Email - Report Phishing in Outlook

BE A HERO!

Use the Report Button in Outlook

You receive an email asking you to take an action. Sounds suspicious, right? But don’t worry. You can be a hero by taking the correct action–and giving your IT department the information they need to defend your organization against the effects of malicious email attacks. It’s easy. Thanks to the Report Button in Outlook.

How do I know what to report?

You should only report messages you suspect are malicious, like phishing or spear phishing emails. Reporting annoying messages, like spam, to IT will waste their time and resources.

Spam is unsolicited and unwanted email, typically sent to try to sell you something. While it is often annoying and misleading, it is rarely malicious.

Simply delete it!

Phishing messages are bulk emails, typically appearing to be from a reputable source, that ask you to take a specific action that can cause damage to you or your organization. These messages are malicious.

Report it!

Spear phishing emails are targeted attacks on a person or organization, occurring after detailed research in order to make them seem especially real. These messages are extremely malicious and can lead to very damaging consequences.

Report it!

Where do I find the Report Button in Outlook? (2 Options)

Option 1

  1. Outlook for Microsoft 365
  2. While viewing your email look for the the Report Button in the Outlook ribbon at the top of your screen.
  3. Select Report Phishing and the pop-up will prompt you to confirm your action. Once confirmed, the suspicious email will be immediately forwarded to your IT team.
  4. Note: While viewing emails through Outlook online, the button will appear above the email message content.
    Image Capture of location of Report Button

Report Button in the Microsoft Outlook Mobile App for iOS and Android

  1. Select the email you want to report
  2. Tap ⋮ at the top right of the screen
  3. Select Report Junk from the dropdown menu
    image showing where to select "Junk" for reporting phishing emails
  4. Select Phishing to report your email
  5. Confirm: Once you click to report, the pop-up will prompt you to confirm your action. Once confirmed, the suspicious email will be immediately forwarded to your IT team.
    image showing where to select "Junk" for reporting emails

 

Option 2

  1. Outlook for Microsoft 365
  2. While viewing your email look for the Phish Report Button in the Outlook ribbon at the top of your screen.
  3. Note: While viewing emails through Outlook online, the button will appear above the email message content.

Phish Button Alternative for reporting Phishing Email

  1. Next, Confirm that you are wanting to report an email as phishing

  1. A confirmation message indicates that the email was reported for review. 

Stop. Look. Think. Report!

Remember, you are the last line of defense against email based criminal activity. Never click on a link or open an attachment in any unexpected or unsolicited email. If you are uncertain, follow your organization’s security policy–or ask your IT team for advice.

Print Article

Related Articles (3)

OIT has implemented FortiMail to assist with the evaluation of incoming and outgoing email messages for potential threats. A separate quarantine space has been created for each unique UCO email address and messages that have been identified as potential spam will be routed to that address's quarantine. This article provides information on managing the emails that are sent to quarantine including how to release that email to your inbox.
The Safe Attachments security feature in Office 365 ensures that all potentially malicious email attachments are automatically executed in a virtual sandbox environment, allowing Microsoft to identify and block harmful attachments without any risk to UCO.
Safe Links is a feature in Defender for Office 365 that provides URL scanning and rewriting of inbound email messages in mail flow, and time-of-click verification of URLs and links in email messages and other locations. Safe Links scanning occurs in addition to the regular anti-spam and anti-malware protection in inbound email messages in Exchange Online Protection (EOP). Safe Links scanning can help protect your organization from malicious links that are used in phishing and other attacks.

Related Services / Offerings (1)