Are any of you noticing that the Advanced Threat Protection in ESS isn't really doing a hell of a lot in terms of protection?
We have a number if Office 365 clients who are using this service and almost every day we receive an alert email from Office 365 (Exchange online Protection) that a malicious file ie. word or PDF file etc has been detected with payload or even malware embedded inside it. Yet every time this passes straight with the ATP service undetected. Apparently this is because when the attachment is opened or executed in the sandbox environment, the scanning service doesn't have the ability to scan INSIDE the files? If there is a malicious URL or embedded image with a link to malicious content, ATP cant detect this, yet Office 365's free EOP service can.
This is good that our clients are still protected, but my issue is why isn't and 'Advanced' Threat Protection service able to do this when we pay for it? We barely see any threats detected at all from the ATP logs too? We would like to know if anyone else experiencing the same issues? Some of the Barracuda Engineers that we have spoken to say that this is a potential known issue, yet we aren't hearing too much back for the product / development team on this.