Links in our mail start with safelinks.protection.outlook.com
Defender for Office 365 rewrites links for click-time scanning. It can break tracking pixels, and clients sometimes want to see the original URL.
Try this first
- 1Confirm in Defender that Safe Links is on (usually correct)
- 2Whitelist your own domains only if tracking truly breaks
- 3For clients: explain the safelinks prefix resolves to the real URL on click
- 4Don't disable globally, that reopens the phishing door
When to bring us in
For specific marketing domains: 'Do not rewrite' that URL, not global off.
See also
- Our emails land in spam for some recipientsAlmost always an SPF, DKIM, or DMARC setting that is wrong or missing, or a sender name that mimics a well-known brand.
- Someone reports receiving phishing emails "from us"Read: spoofing. Someone is abusing your sender name, not necessarily your actual mailbox.
- An email bounces (NDR): delivery failedThe NDR text usually states the exact reason. Reading it is step one.
None of the above fits?
Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.
Or skip the DIY entirely
Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.