← Back
(Updated) Microsoft Teams: Malicious URL Protection for Teams Chat and Channels
MC1148539 · build prod-20251231-200323
Category
preventOrFixIssue
Severity
normal
Major change
False
Last modified
2025-11-17 17:10:55
Summary source
Azure OpenAI (gpt-4.1)
Action by (Graph)
Action by (AI)
Services
Microsoft Teams
Tags
Updated message, New feature, User impact, Admin impact
Master tags
Security
Roadmap IDs
499893

One-line summary

Malicious URL Protection in Teams rolls out globally in Nov 2025, warning users about unsafe links; feature defaults ON at GA, with admin override possible.

Similar updates

More like this
MC1200576 Teams admin center: Messaging safety defaults changing to "On" by default
Teams admin center: Messaging safety defaults changing to "On" by default Starting January 12, 2026, Microsoft Teams will enable messaging safety features by default, including weaponizable file type protection, malicious URL protection, and reporting incorrect detections. Existing custom set. [Introduction] We’re improving messaging security in.
MC1147984 (Updated) Microsoft Teams: User reporting for incorrectly identified security concerns
(Updated) Microsoft Teams: User reporting for incorrectly identified security concerns Teams users can now report messages incorrectly flagged as security threats; feature rolls out GA by end of Nov 2025 and is on by default, with admin controls in Teams and Defender portals. Introduction Microsoft Teams now enables users to report messages they.
MC1187837 Microsoft Defender for Office 365 Zero-hour auto-purge (ZAP) Teams protection capabilities to Defender for Office Plan 1
...uto-purge (ZAP) Teams protection capabilities to Defender for Office Plan 1 Starting January 6, 2026, Zero-hour auto-purge (ZAP) will be enabled by default for Teams in Defender for Office 365 Plan 1, automatically quarantining malicious messages[Introduction] Starting January 6, 2026 ,  Zero-hour auto-purge (ZAP) —a feature that moves.
MC1120871 (Updated) Important Update: Teams Meeting Join URL Validation
(Updated) Important Update: Teams Meeting Join URL Validation Teams will validate meeting join URLs to prevent issues from URL rewriting; rollout starts Sep 30, 2025 (WW) and Nov 30, 2025 (GCC/DoD); 3rd-party security tools must not rewrite join links. Updated September 11, 2025: We have updated the timeline. What and Who To enhance the security.
MC772556 (Updated) Microsoft Teams: Shorter meeting URLs
(Updated) Microsoft Teams: Shorter meeting URLs Teams meeting URLs will be shortened and made more secure; new links will expire after 60 days (scheduled) or 8 hours (Meet Now). Some URL parameters will be removed. Updated December 4, 2025: We have updated. We are reducing the length of Microsoft Teams meeting URLs for easier sharing. This.
MC1162275 Product transitions to the cloud.microsoft domain – September 2025
Product transitions to the cloud.microsoft domain – September 2025 Microsoft Teams is now available at teams.cloud.microsoft; users will be redirected from the old domain in coming months to enhance security. Update links and ensure .cloud.microsoft is not blocked. [Introduction] To improve security and trust across Microsoft cloud services,.

Details

RoadmapIds
499893
FeatureStatusJson
{"499893":[{"RoadmapId":499893,"Platform":"Web","Status":"Launched","LastUpdateTime":"2025-12-24T22:54:26.4831964Z","LatestRing":"StandardRelease"},{"RoadmapId":499893,"Platform":"iOS","Status":"FeatureRolloutStatusNotSupported","LastUpdateTime":"2025-12-24T22:54:26.4831965Z","LatestRing":null},{"RoadmapId":499893,"Platform":"Desktop","Status":"FeatureRolloutStatusNotSupported","LastUpdateTime":"2025-12-24T22:54:26.4831965Z","LatestRing":null},{"RoadmapId":499893,"Platform":"Android","Status":"FeatureRolloutStatusNotSupported","LastUpdateTime":"2025-12-24T22:54:26.4831966Z","LatestRing":null},{"RoadmapId":499893,"Platform":"All","Status":"FeatureRolloutStatusNotSupported","LastUpdateTime":"2025-12-24T22:54:26.4831966Z","LatestRing":"StandardRelease"}]}
Summary
Microsoft Teams will complete rollout of Malicious URL Protection by November 2025, warning users about harmful links in chats and channels. The feature will be off by default during Targeted Release and on by default at General Availability. Admins can enable or configure it via Teams Admin Center or PowerShell.
Platforms
Android, Desktop, iOS, Web

Body (from Message Center)

Updated November 17, 2025: The rollout of Malicious URL Protection in Microsoft Teams is expected to finish before the end of November 2025 for General Availability (Worldwide). The previously announced update to make Malicious URL protection setting in Messaging settings ON by default has been postponed to early 2026. A separate communication will be issued detailing the roll out schedule for the default-on change in advance.

Thank you for your patience.  

Introduction

Microsoft Teams is introducing enhanced protection against phishing attacks by detecting and warning users about malicious URLs shared in Teams chats and channels. This feature helps users make safer decisions before clicking potentially harmful links. This message applies to Teams for Windows desktop, Teams for Mac desktop, Teams for the web, and Teams for iOS/Android.

This message is associated with Roadmap ID 499893.

When this will happen

  • Targeted Release (Worldwide): Rollout begins early September 2025 and is expected to complete by mid-September 2025.
  • General Availability (Worldwide): Rollout begins early November 2025 and is expected to complete by end of November 2025 (previously mid-November).

How this affects your organization

user settings

When a malicious link is detected, Teams will automatically display a warning to both the sender and recipient. This helps reduce the risk of phishing attacks.

  • Targeted Release: Link protection is applied only when all participants in the conversation have the feature enabled.
  • General Availability: Link protection is enforced if at least one participant in the conversation has the feature enabled.

Targeted release vs. General Availability behavior:

  • Targeted release: Link protection is applied only when all organizations in the conversation have the feature enabled. This feature is off by default and requires admin activation.
  • General Availability: Link protection is applied if at least one participant has the feature enabled. This feature is on by default. Admin settings saved during Targeted Release will remain unchanged. 

What you can do to prepare

During Public Preview, administrators must manually enable the feature:

  1. Go to the Teams Admin Center
  2. Navigate to Messaging Settings
  3. Enable the setting: Scan messages for unsafe URLs

user settings

This setting is also available via Set-CsTeamsMessagingConfiguration PowerShell cmdlet -UrlReputationCheck parameter.

No action is required once the feature reaches General Availability, as it will be turned on by default.

Learn more: Malicious URL Protection in Microsoft Teams

Compliance considerations

Compliance AreaExplanation
Does the change introduce or significantly modify AI/ML or agent capabilities that interact with or provide access to customer data? URL scanning uses reputation-based detection algorithms to identify malicious links. This involves scanning user messages and performing reputation lookups against Microsoft Defender for Office's managed collection.
Does the change include an admin control that can be scoped using Entra ID group membership? Admins can enable or disable the feature via Teams Admin Center or PowerShell. However, scoping via Entra ID group membership is not supported.

Reminder:

General Availability begins November 3 and complete by end of November. At GA, "Scan messages for unsafe URLs" will default to ON as previously mentioned, and link protection will apply if any participant in a conversation has it enabled.
To use a different setting, go to Teams admin center → Messaging settings → Scan messages for unsafe URLs, select your preference, and click Save before GA.

Note: Simply viewing the page without saving will not override the default, but settings already saved during Targeted Release will persist.

Raw JSON (for debugging)

Expand/collapse the full payload below.
Show/hide raw 
{
  "snapshot_item": {
    "action_required_by": null,
    "ai_action_required_by": null,
    "ai_actions": [
      "Review Teams messaging settings",
      "Set preferred URL protection option before GA if needed"
    ],
    "ai_master_tags": [
      "Security"
    ],
    "ai_model": "gpt-4.1",
    "ai_summary": "Malicious URL Protection in Teams rolls out globally in Nov 2025, warning users about unsafe links; feature defaults ON at GA, with admin override possible.",
    "ai_topics": [
      "Teams",
      "Defender"
    ],
    "category": "preventOrFixIssue",
    "details_map": {
      "FeatureStatusJson": "{\"499893\":[{\"RoadmapId\":499893,\"Platform\":\"Web\",\"Status\":\"Launched\",\"LastUpdateTime\":\"2025-12-24T22:54:26.4831964Z\",\"LatestRing\":\"StandardRelease\"},{\"RoadmapId\":499893,\"Platform\":\"iOS\",\"Status\":\"FeatureRolloutStatusNotSupported\",\"LastUpdateTime\":\"2025-12-24T22:54:26.4831965Z\",\"LatestRing\":null},{\"RoadmapId\":499893,\"Platform\":\"Desktop\",\"Status\":\"FeatureRolloutStatusNotSupported\",\"LastUpdateTime\":\"2025-12-24T22:54:26.4831965Z\",\"LatestRing\":null},{\"RoadmapId\":499893,\"Platform\":\"Android\",\"Status\":\"FeatureRolloutStatusNotSupported\",\"LastUpdateTime\":\"2025-12-24T22:54:26.4831966Z\",\"LatestRing\":null},{\"RoadmapId\":499893,\"Platform\":\"All\",\"Status\":\"FeatureRolloutStatusNotSupported\",\"LastUpdateTime\":\"2025-12-24T22:54:26.4831966Z\",\"LatestRing\":\"StandardRelease\"}]}",
      "Platforms": "Android, Desktop, iOS, Web",
      "RoadmapIds": "499893",
      "Summary": "Microsoft Teams will complete rollout of Malicious URL Protection by November 2025, warning users about harmful links in chats and channels. The feature will be off by default during Targeted Release and on by default at General Availability. Admins can enable or configure it via Teams Admin Center or PowerShell."
    },
    "id": "MC1148539",
    "importance": 1,
    "is_major_change": false,
    "last_modified": "2025-11-17T17:10:55Z",
    "ms_products": [
      "Teams"
    ],
    "platforms": "Android, Desktop, iOS, Web",
    "roadmap_ids": [
      "499893"
    ],
    "services": [
      "Microsoft Teams"
    ],
    "severity": "normal",
    "tags": [
      "Updated message",
      "New feature",
      "User impact",
      "Admin impact"
    ],
    "title": "(Updated) Microsoft Teams: Malicious URL Protection for Teams Chat and Channels"
  }
}