Since the recent "Secure Defaults" pushed to all tenant specially those using Defender, we have noticed a mayor increased in "False Positives" tagged with the "High Confidence Phish". I was wondering if anyone has been dealing with this and what have you implemented to mitigate this a bit, or if you have found what makes the tag trigger. More of an open conversation, we have now a few clients where this is becoming a real nightmare