Identifying scam emails can often times be difficult for workers which is why Microsoft is planning to give organizations the ability to allow emails containing malicious URLs or attachments to reach the mailboxes of their employees in order to run training sessions or simulations.

When the new feature becomes available in Q3 of this year, Office 365 security administrators will able to choose items that contain threats and allow them to reach employees’ inboxes via a self-remediation portal. Any selected items will be able to bypass all layers of the Office 365 Exchange Online Protection (EOP) filtering stack which scans for and blocks spam emails.

Source Article