What is Phishing?

 

  • Phishing is a social engineering tactic in which Internet users are tricked into revealing personal or confidential information through the use of deceptive emails or websites.


Who is impacted by phishing?


  • Anyone can be a victim of a phishing attack.
  • Executives and Leadership roles could be directly targeted.


What can I do to prevent an attack?


  • Check the sender of the email priorto opening the email. 
    • Do you know them? 
    • Does the email seem suspicious?
  • Hover over any links to check the source beforeclicking them.
    • If you are unsure, do not click the link or forward the email to anyone. 
  • Watch for misspellings, calls to action, and requests for personal information.
  • Ensure attachments are safe and legitimate before opening or downloading.
  • Do not input credentials or personal information into any form or website if you are not sure of the source.
  • Is it too good to be true? Does it seem offWhen in doubt, please Report Phish!


Example phishing email:


Additional information about phishing can be found here.



How do I report a potential phishing email?


  • Report Phish: Use the Report Phish button within Outlook.



Outlook Desktop Application


While viewing the message in question, click on the Report Phish button within your Outlook ribbon

 




Outlook Web


While viewing the message in question, navigate to the Apps button (next to the Reply and Forward buttons) and click the Report Phish button




Outlook Mobile App


While viewing the message in question, tap on the ellipses button (...) then tap the Report Phish button.







What happens after I report potential phish?


The email message will be scanned by Proofpoint's Closed-Loop Email Analysis and Response (CLEAR) process and you will receive an email message back with an update based on the disposition.

 


For more information, please read the Proofpoint Phishing Reference Guide.