Technology Help - Report Phishing Emails

What is Phishing?

Phishing is an attempt by cybercriminals posing as legitimate institutions, usually via email, to obtain sensitive information from targeted individuals.

Common Features of Phishing Emails

Too Good To Be True - Lucrative offers and eye-catching or attention-grabbing statements are designed to attract people’s attention immediately. For instance, many claim that you have won an iPhone, a lottery, or some other lavish prize. Just don't click on any suspicious emails. Remember that if it seems to good to be true, it probably is!
Sense of Urgency - A favorite tactic amongst cybercriminals is to ask you to act fast because the super deals are only for a limited time. Some of them will even tell you that you have only a few minutes to respond. When you come across these kinds of emails, it's best to just ignore them. Sometimes, they will tell you that your account will be suspended unless you update your personal details immediately. Most reliable organizations give ample time before they terminate an account and they never ask patrons to update personal details over the Internet. When in doubt, visit the source directly rather than clicking a link in an email.
Hyperlinks - A link may not be all it appears to be. Hovering over a link shows you the actual URL where you will be directed upon clicking on it. It could be completely different or it could be a popular website with a misspelling, for instance www.bankofarnerica.com - the 'm' is actually an 'r' and an 'n', so look carefully.
Attachments - If you see an attachment in an email you weren't expecting or that doesn't make sense, don't open it! They often contain payloads like ransomware or other viruses. The only file type that is always safe to click on is a .txt file.
Unusual Sender - Whether it looks like it's from someone you don't know or someone you do know, if anything seems out of the ordinary, unexpected, out of character or just suspicious in general don't click on it!

What to Do If You Receive a Phishing Email

If you HAVE NOT clicked a link:

Do NOT click any links or open attachments.
Report the email as spam or phishing using your email client's built-in tools (as detailed in the full documentation).

If you HAVE clicked a link or entered information:

Contact the helpdesk immediately to prevent malware installation or data compromise.
- Phone: 269-250-9280
- Email: support@swmitech.org
- Portal: https://support.swmitech.org/
When emailing the helpdesk, DO NOT attach or forward the phishing message.
Include the subject line of the phishing email and detail the actions you took (e.g., clicked the link, entered a password). They will contact you to safely obtain the message.

How to Report an Email as Phishing in Gmail

Log in to your Gmail account and open your inbox.
Open the message that you suspect is a phishing attempt.
Look for the More icon (three vertical dots) next to the Reply button on the message.
Click on More and then select Report phishing from the dropdown menu.

By reporting a phishing email, you help Gmail improve its filters to protect you and others from potential harm. Remember, it’s important not to click on any links or download any attachments from suspicious emails as they may compromise your personal information. If you’re ever in doubt about the legitimacy of an email, it’s better to err on the side of caution and report it1.

Reporting Phishing Emails in Outlook

Launch Outlook on your desktop or open a browser and sign into the web version of Outlook.
Select the suspicious email without clicking any internal links.
Click the dropdown arrow next to the Report button.
From the dropdown menu, select Report phishing.
Confirm your action by clicking the OK button when the verification message appears.

This will report the selected email as a phishing attempt to Microsoft, helping to improve the security and filtering systems in place1.

For more detailed instructions or if you’re using Outlook on different platforms, you can refer to the official Microsoft documentation1.

Outlook App

Outlook on the Web

What can I do to help protect myself from phishing attempts?

Here is a great resource for identifying red flags.
If there is a link in an email, hover over the URL first. Look closely at the URL to make sure it is legitimate (many links have slight misspellings or other things that you can catch)