An organization named GetCloudSkills.com has a Microsoft 365 tenant. Unfortunately, malicious actors have targeted the organization, continuously sending phishing emails and documents to the managers. The security department is closely monitoring all threats, and the company wants to use Microsoft 365 Defender to protect itself against these ongoing attacks. What configuration option should be used to achieve this goal?