How to Report Phishing to the Information Security Team

Phishing is the most commonly used tool by cybercriminals to steal login credentials, personal information, data, and intellectual property. If you receive an email that seems suspicious (i.e., an email that demands quick action, comes from an unknown sender, asks you to provide login credentials or other personal information, etc.), protect yourself and others in the community by using the Phish Alert Button (PAB). When you report a suspicious email using the PAB, our team will investigate the threat and take any necessary action, such as removing all similar messages from systems and notifying our community of the threat.

Where to Find the PAB

The appearance of the PAB varies slightly according to the version of Outlook you use. In all versions, the PAB icon appears as an open envelope with an orange fishhook. When there is accompanying text, some versions will read “Phish Alert” while others will say “Report Phish”. Please see below for examples of the icon in various environments.

Don’t have the PAB?

Report phishing by sending us an attachment.

To report a phishing message, please send it as an attachment to [email protected] and notify the Information Security Team. The following instructions provide a step-by-step guide on how to send an email as an attachment using the most common desktop clients. Unfortunately, sending an email as an attachment is not possible on most mobile clients.

Apple Mail

If you need to report a phishing attempt in Apple Mail but don’t have the Phish Alert Button (PAB), follow these steps.

Gmail

If you need to report a phishing attempt in Gmail but don’t have the Phish Alert Button (PAB), follow these steps.

Thunderbird

If you need to report a phishing attempt in Thunderbird but don’t have the Phish Alert Button (PAB), follow these steps.

Learn More:

Protect yourself from phishing; learn to spot a phishing message with Microsoft

Top News on Email Scams, Spoofing, and Phishing