Image of a person's hand holding a mobile phone displaying Microsoft Outlook app

Report Phishy Emails with New Outlook Security Feature

Even when the strongest email security protocols are in place, occasional phishing or unauthorized emails can sneak into email inboxes. If something does not look right in your inbox, it should quickly be reported to reduce the likelihood of other university users also receiving malicious emails, commonly referred to as phishing campaigns. Northeastern has recently launched a new tool to make it easier than ever to report suspected phishing emails.

Outlook (desktop, online, and mobile) allows for the easy reporting of suspicious emails. This message reporting feature is the best way to report spam or phishing attempts from bad actors, as this reporting method gives the Northeastern security team better information to monitor and take automated actions. A submitted report will automatically flag the email and send a notification to both Northeastern IT Services and Microsoft for security analysis. The Northeastern security team can also answer questions about email threats at phishcatcher@northeastern.edu.

Continue reading below for more information about how to identify these emails, what to do, and how to report them with the recently released Report Message add-on tool for Outlook.

How to report a suspicious email with Outlook Report Message

Using Outlook Desktop Mail Client

Upon identifying spam or suspicious email, select the  Report Message tab  located on the upper right-hand toolbar in Outlook.

Next, select Phishing from the drop-down list.

Finally, select Report in the pop-up window to confirm your selection.

Using Outlook in a Web Browser

Upon identifying spam or suspicious email in Outlook while using a web browser, select the three dots/ellipses (…) located on the right side of email messages.

Select Report Message from the drop-down menu.

Next, select Phishing.

Finally, select Report to confirm the reporting action.

Using a Mobile Outlook Client or App

Android

When viewing a suspicious email message on an Android mobile device, to report, select the three dots/ellipses (…) located on the right side of email message (under the time email received). Next, select Report Message. Then, select Report as phishing. A Report Message prompt will display and finally, select Report.

Apple – (iOS)

When viewing a suspicious email message on mobile in iOS, to report, select the three dots/ellipses (…) located on the right side of the email message (under the time email received). Next, select Report Message. Then, select Report as phishing. A Report Message prompt will display and finally, select Report.

More ways to stay safe with email spam, phishing, scams, or credential requests.

  1. Identify it
    • Verify who sent an email to you. Keep an eye out for bad actors.
    • Look for suspicious links within emails.
    • Identify links to false copy sites that may ask for your personal information.
  2. Recognize it
    • If an email feels fake or like spam, analyze it deeper.
    • Don’t share personal information or login credentials.
    • Proactively protect your computer by exploring anti-virus software options.
    • Remember, Northeastern will never ask for your login credentials or personal information via email.
  3. Report it
    • Use Northeastern’s Report Message tab in Outlook (desktop client, web browser, or mobile) or email phishcatcher@northeastern.edu with questions regarding suspicious emails.

Stay informed and learn more about keeping your online experience safe by visiting, https://getsecure.northeastern.edu/

Thank you for your assistance and diligence in identifying potential online threats to the Northeastern community!