Microsoft's New Graymail Filter: What It Means for Your Cold Emails

Last updated: 04 June 2026

Microsoft just rolled out a significant update to how Outlook handles bulk email. If you're sending cold outreach to Microsoft 365 inboxes, you need to know about it.
​

Here's what changed, why it matters, and exactly what to do about it.
​

Starting in May 2026, Microsoft rolled out a new wave of Defender for Office 365 updates that are hitting cold outreach hard. Three things shifted at once.

First, in April 2026, Microsoft Defender added a built-in graymail filter that automatically classifies and routes bulk email into a new Promotions folder, separate from the inbox and separate from Junk. What's graymail? It's email that technically passes every spam check (your SPF, DKIM, and DMARC are all clean) but looks like bulk outreach. Think newsletters, vendor promotions, product announcements, and yes, cold emails.
​

The filter learns over time. If a recipient moves an email from Promotions into their inbox, future emails from that sender go straight to the inbox. If they ignore it or move it the other way, it stays buried.
​

Second, Defender upgraded its AI-content detection. It now flags copy that matches patterns typical of AI-generated outreach: polished openers, symmetric paragraphs, generic value props, and textbook CTAs. If your copy sounds like it came out of ChatGPT, Microsoft's filter knows.
​

Third, Microsoft tightened its behavioral fingerprinting on automated sending. Bursts of near-identical messages, predictable send intervals, and classic sequencer follow-up timing (3-day, 5-day, 7-day) now contribute directly to spam scoring, even when each individual message looks clean.

This is on top of Microsoft's May 2025 enforcement update, which added strict authentication requirements. Microsoft now rejects emails outright (with a 550 error) from domains sending to Outlook, Hotmail, or Live addresses without proper SPF, DKIM, and DMARC configured.
​

The good news: Mailscale handles all of that authentication automatically. If you're set up through us, you're covered on the infrastructure side.

The challenge: Even with clean authentication, your emails can now land in Junk or the Promotions folder because of how they're written and how they're sent.
​

If you're seeing lower reply rates from Microsoft recipients in the last few weeks, this is likely why.
​

The Promotions folder isn't the Junk folder. Your email is still getting delivered. But it's a different tab, and most people don't check it with the same attention they give their inbox. And if you're landing in Junk outright, it's not getting seen at all.
​

The fix is on the copy and sending practice side, not the infrastructure side.
​

Here's what's working right now:
​

Here's something a lot of people don't realize: Microsoft Defender now detects AI-written emails. If your copy sounds generated, it will get treated like bulk mail, because to the filter, it basically is.
​

Graymail filters also look at overall email structure and patterns beyond just authentication. If your email reads like a marketing email, it gets treated like one.
​

Keep it short. Two to three paragraphs max. Write the way you'd talk to someone on a call. No HTML formatting, no images, no bold text or bullet points. Plain text only.
​

Avoid phrases like "I wanted to reach out," "quick question," "just following up," or anything that sounds templated. Personalize beyond just the first name and reference something specific to their company or role.

If you're using AI to help write your emails, that's fine, but edit them afterward until they sound like you. Read them out loud. If it sounds stiff, rewrite it.
​

Open tracking works by embedding a tiny hidden image in your email. Every major email provider, including Microsoft, can detect this. It's one of the clearest signals that an email is being sent at scale.
​

Turn it off. Use reply rates to measure performance instead. Open rates are unreliable anyway (Microsoft's Copilot AI auto-opens emails to generate summaries, which inflates your numbers).
​

Links are another strong bulk-mail signal. Microsoft's filters scan URLs, and tracking links or custom redirect domains are a fast path to the Promotions folder (or worse, Junk).
​

For your first-touch email, remove links entirely. No CTA links, no unsubscribe links, no calendar links. Just ask a question and get a reply. You can share a link once someone responds.
​

Short, lowercase, specific. Aim for four to seven words and under 40 characters. Avoid vague curiosity-bait like
​
"Quick question" or "Thought you'd find this interesting."

Good example: outbound hiring at [company]

Bad example: Quick question about your sales process

Never turn off warmup, even during active campaigns. Warmup engagement signals tell Microsoft that people want to receive your emails. A 50/50 split between warmup and campaign sends is the standard: 30 warmup emails and 30 campaign emails per day per mailbox.
​

New to a domain? Run warmup for at least four to six weeks before launching campaigns. Aim for an 80% reply rate on warmup emails.
​

The current best practice is two emails per sequence, three at the absolute maximum. There are two reasons for this.
​

First, more emails means more bulk-mail signals. Microsoft's behavioral fingerprinting now recognizes classic sequencer cadences, so a 5-step sequence is actively working against you.
​

Second, and more importantly: every extra follow-up is another chance for someone to hit "report spam" out of frustration. Microsoft's spam complaint threshold is tight. Getting flagged by enough recipients damages your domain reputation fast, and recovery takes weeks. One spam report won't kill you. A pattern of them will.
​

Keep follow-ups at least three to four days apart, keep them short, and make each one say something new. If someone hasn't replied after two follow-ups, let it go.
​

Sending to bad addresses tanks your sender reputation fast. Before uploading any list, run it through MillionVerifier, ZeroBounce, or NeverBounce. Remove any addresses that come back as invalid, risky, or catch-all.
​

Keep your bounce rate under 2%. Going over that is one of the fastest ways to get flagged.
​

This is one people overlook. Even with clean copy and good sending practices, loading a campaign that's 60-70% Microsoft addresses is going to hurt you right now. Microsoft's filters are stricter than Google's, and a high concentration of Microsoft recipients means a high concentration of risk.

Keep Microsoft addresses to a maximum of 25% of your total lead list per campaign. The rest should be spread across Gmail and other providers. This keeps your overall placement rate healthy and protects your domain reputation while Microsoft's filters are in this heightened state.
​

This one is non-negotiable. Cold outreach to personal Microsoft consumer domains is a Mailscale policy violation and will result in account suspension.

That includes all of the following:
​

hotmail.com, outlook.com, live.com, msn.com, passport.com, and all international variants like hotmail.fr, hotmail.de, live.co.uk, outlook.com.br, and dozens more.
​

These aren't business inboxes. Mailscale is a B2B platform, and Microsoft's May 2026 update made consumer domain filtering even more aggressive than it already was. There is no workaround. If you see any of these in your lead list, remove them before uploading.
​

You don't need to worry about authentication. Mailscale automatically configures SPF, DKIM, and DMARC for every domain and mailbox you set up through us. We also manage your sending IPs and warmup infrastructure.

What this update asks of you is on the copy and sending practice side. Get that right, and you're in a good spot.
​

If you're seeing deliverability issues after following these steps, reach out to our support team and we'll dig in with you.
​

Questions? Contact us at [email protected]