Week 27: Using the Phish Alert Button

Tuesday, September 13, 2022

Happy Tech Tuesday! Today, we discuss Using the Phish Alert Button.


You receive an email asking you to take an action. Sounds suspicious, right? But don’t worry. You can be a hero by taking the correct action – and giving your IT department the information they need to defend the firm against the effects of malicious email attacks. It’s easy. Thanks to the Phish Alert Button, or PAB for short.

This is the Phish Alert Button.
This button is all you need to report suspected phishing and spear phishing emails to your IT department. Yep! It’s that easy! By using the PAB, you’ll provide your IT department with the “intel” it requires to deal with malicious emails – and strengthen the firm’s defenses at the same time.


How do I know what to report?


You should only report messages you suspect are malicious, like phishing or spear phishing emails. Reporting annoying messages, like spam, to IT will waste their time and resources. When you receive a suspicious email, don’t open any attachments or click on any links. Instead, from right within Outlook, you’ll click on the PAB. This will automatically forward the email to the IT department and, at the same time, remove it from your own Inbox.

Spam is unsolicited and unwanted email, typically sent to try to sell you something. While it is often annoying and misleading, it is rarely malicious.

Phishing messages are bulk emails, typically appearing to be from a reputable source, that ask you to take a specific action that can cause damage to you or your organization. These messages are malicious.

Spear phishing emails are targeted attacks on a person or organization, occurring after detailed research in order to make them seem especially real. These messages are extremely malicious and can lead to very damaging consequences.

Simply delete it!

Report it with the PAB!

 

How do I use the PAB in Outlook?


  1. You can find the Phish Alert Button in your Outlook ribbon at the top of your screen. Locate the envelope icon with the orange “fishhook.”
  2. Report suspected phishing emails by clicking the Phish Alert in the ribbon.
  3. Once you click to report, the pop-up will prompt you to confirm your action.
  4. Once confirmed, the suspicious email will be immediately forwarded to your IT team and will be moved to your Deleted Items folder.

 

Stop. Look. Think. Report!


Remember, you are the last line of defense against email based criminal activity. Never click on a link or open an attachment in any unexpected or unsolicited email. If you are uncertain, ask your IT team for advice.