Report Phishing E-mail

[Return to E-mail Services and Sending Limits: LSU Overview]

Report Phishing E-mails

Phishing emails are malicious messages that attempt to trick recipients into providing sensitive information or performing fraudulent tasks. Users can report any suspicious or malicious message to LSU IT Security and Policy (ITSP) for review through the Report options in Outlook.

Phishing emails may

Request information like passwords or personally identifiable information
Attempt to direct users to malicious sites or downloads
Impersonate users to perpetuate financial scams
Use urgency or pressure to encourage recipients to respond to the message

All reported phishing messages are reviewed so that appropriate actions can be taken against phishing emails and malicious links. Your report is an effective and helpful way to help protect the LSU community from malicious messages!

More information about phishing and additional resources are available here: lsu.edu/phishing

How to Report

The Report Phishing option is available by default on supported versions of Outlook. Select an option below to jump to the relevant section.

Outlook Desktop and Web Apps
Outlook for iOS
Outlook for Android
Other Reporting Options

Outlook Desktop and Web Apps

Select the email in the message list or double click the message to open it in a new window. Use the “Report” dropdown on the ribbon to choose “Report Phishing.”

The appearance of the ribbon may differ slightly between platforms, but the “Report” dropdown with the “Report Phishing” option will have a similar appearance and location.

This example is from Microsoft 365 Outlook Classic on Windows 11.

The Report button on the Outlook ribbon contains phish reporting options.

This example is from Outlook on the Web.

The Report icon on the ribbon contains report phishing options.

The “Report” options are also available after right clicking the email in the message list.

Report options are available after right clicking on a message.

[back to top]

Outlook for iOS

Select the email and tap the “…” option at the top of the screen.

From the menu, select “Report Junk”

Select Report Junk on the message actions menu

From the pop-up, select “Phishing”

the option to report a phishing message is displayed

Additional information can be found at Microsoft's Support site.

[back to top]

Outlook for Android

Select the email and tap the “…” button at the top of the screen

From the menu, select "Report Phishing"

Report phishing is available in the message actions

[back to top]

Other Reporting Options

If you are unable to submit a message as phishing through one of the Outlook reporting options above, forward the message to security@lsu.edu directly or by adding the suspicious message as an attachment to an email to security@lsu.edu.

If the forwarded message does not contain all the information for review, Security will coordinate with you to get any additional context needed to evaluate or remediate the phishing message.

[back to top]

What happens after a message is reported?

When a message is reported through Outlook, the reported message will be sent to deleted items and the potential phishing message (which includes all message content, links, attachments, and headers) will be sent to LSU IT Security and Policy for assessment.

The reported message will be reviewed by security staff to determine if the message is malicious, safe, or spam.

Malicious messages will be addressed by LSU IT Security and Policy. This may include blocking known malicious links and senders, removing malicious messages from the LSU environment, and monitoring for compromised accounts or other impacts. Users can expect to receive a response from LSU IT Security and Policy via a TeamDynamix response sent by ITService@lsu.edu indicating that the message was phishing.
Safe messages will be acknowledged to the reporting user. If LSU IT Security and Policy determines the message is safe and may require additional review, users can expect to receive a response from Security indicating that the message was safe and that it can be retrieved from the user’s deleted items folder.
Spam messages that are not malicious in nature like unsolicited sales offers or newsletters will be discarded with no additional action. We recommend unsubscribing or configuring inbox rules/junk mail rules to address these messages. Reporting spam or junk mail to LSU IT Security will not prevent similar messages in the future.
Messages reported as “junk” through the reporter are NOT sent to LSU ITSP and are only evaluated by Microsoft

If you receive a follow up to a phishing report, you can always reply to the report response if you have additional questions or concerns that need to be addressed.

If you have any other questions, concerns, or issues with phishing messages or the phishing reporter, please contact the LSU IT Security and Policy team at security@lsu.edu.

[back to top]

Article ID: 19636
Last Updated: 2/7/2025 3:14:52 PM

We love feedback! Please Help us improve this article.

Article Rating (Optional):

Email Address (Optional, unless you would like to hear back from us):

Comments:

Note:

GROK is a resource of Louisiana State University developed and maintained with support of the LSU Student Technology Fee. We love getting feedback from the general public, but our support efforts are generally dedicated to the LSU community. Thanks for your understanding!

Paths to this article

Quick Links