Microsoft to Deprecate Legacy TLS and Endpoints for POP and IMAP in Exchange Online -- Redmondmag.com

Redmond Dispatch

Microsoft to Deprecate Legacy TLS and Endpoints for POP and IMAP in Exchange Online

Microsoft announced plans to deprecate legacy Transport Layer Security (TLS) versions and older endpoints for POP3 and IMAP4 connections in Exchange Online, as part of ongoing efforts to strengthen security. The update will phase out older TLS protocols and legacy connection endpoints that do not meet modern security standards. Organizations using outdated configurations will need to update clients and systems to supported versions to maintain connectivity. Email clients and libraries will need to be able to support TLS 1.2 or higher for a smooth Exchange experience.

Exchange Online supports email access through POP and IMAP, often used by legacy applications and devices. The changes are intended to reduce exposure to vulnerabilities associated with older encryption protocols and improve overall protection of data in transit. Security teams have been pushing to eliminate legacy protocols that can introduce risk into enterprise environments. Microsoft said it will start to block legacy version connections starting in July 2026.

Posted by Redmondmag.com Editors on 04/28/2026

Featured

Where Air Gapped Backups Actually Fail, Part 2

Air gapped backups can still fail when configuration drift, lost encryption keys and routine human mistakes go unnoticed until recovery is needed.
Nadella Says Enterprise AI's Future May Depend Less on Frontier Models Than Learning Systems

Satya Nadella is making the case that the next phase of enterprise AI will not be won by the company with the highest-scoring model on a public leaderboard.
AI Agents Could Put Enterprise GenAI Budgets Under Pressure

Enterprises moving generative AI from pilots into production may be underestimating the cost of running those systems at scale, particularly as inference workloads and AI agents become more common, according to a new Gartner report.
Banks Targeted by Fileless Phantom Stealer Phishing Campaign

A new phishing campaign is targeting banks and other high-value organizations with Phantom Stealer, a commercially available infostealer that runs in memory to avoid traditional detection, according to new research from Fortra.
Where Air Gapped Backups Actually Fail, Part 1

Air gapped backups can provide critical ransomware resilience, but restore testing gaps, documentation drift and media rotation mistakes can leave organizations unsure whether they can actually recover.

comments powered by Disqus

Subscribe on YouTube

Office 365 Watch

Email Address*Country*

Please type the letters/numbers you see above.

Upcoming Training Events

0 AM

Live! 360 2-Day Hands-On Seminar: AI-Powered .NET Development with Claude & Claude Code
July 9-10, 2026

TechMentor & Cybersecurity Live! @ Microsoft HQ
August 3-7, 2026

The AI Pivot
September 25, 2026

Live! 360 6-Week Training & Certification Course: Mastering the Microsoft AI Framework: Building Enterprise-Ready AI Agents with Microsoft Foundry
October 6–November 10, 2026

Live! 360 Orlando
November 15-20, 2026

Artificial Intelligence Live! Orlando
November 15-20, 2026

AI Enterprise Architecture Live! Orlando
November 15-20, 2026

Cybersecurity & Ransomware Live! Orlando
November 15-20, 2026

Data Platform Live! Orlando
November 15-20, 2026

TechMentor Orlando
November 15-20, 2026

Live! 360 2-Day Hands-On Seminar: AI-Powered .NET Development with Claude & Claude Code
December 8-9, 2026

Webcasts

More Webcasts

Whitepapers

More Tech Library

Redmond Dispatch