Reporting a Phish or Spam email

Issues / Questions

  • How do I report a phishing email to IT?
  • How do I report a suspected phishing email to Information Technology?
  • I received what looks like a spam email — how do I report it?
  • Can I forward a suspected phishing attempt to IT?
  • How do I alert IT Security about a possible phishing email?
  • Where is the Report Message button in Outlook?
  • How do I report phishing in Outlook on my iPhone or iPad?

Environment

This article applies to all Bowdoin faculty, staff, and students. The Report Message option is available in all Microsoft Outlook platforms: Outlook for macOS, Outlook Online (browser), Outlook for Windows, and Outlook for iOS and iPadOS.

Resolution

There is no need to forward suspected phishing or spam emails to IT directly. Instead, use the Report Message option built into Outlook. This tool reports the message to Bowdoin IT and Microsoft simultaneously, allowing IT to investigate and remediate if necessary.

Outlook for macOS

Option 1: Click the Report tab in the top ribbon and choose Report Phishing. If you do not see the Report tab, click the ellipsis (...) and choose Report from there.

Option 2: Right-click (or Control-click) a message in your message list, choose Report, then choose Report Phishing. Follow any prompts that appear.

Outlook Online

Option 1: With a message selected, click the ellipsis (...) in the upper-right corner of the reading pane (near the reply and forward buttons). Choose Report, then Report Phishing.

Option 2: Right-click the message in your message list, choose Report, then choose Report Phishing. Follow any prompts that appear.

Outlook for Windows

Option 1: Click the Report tab in the top ribbon and choose Report Phishing. If you do not see the Report tab, click the ellipsis (...) and choose Report from there.

Option 2: Select the message as if you were reading it. In the message's menu bar at the top, choose Report, then Report Phishing. Follow any prompts that appear.

Outlook for iOS and iPadOS

Option 1: Open the message and tap the ellipsis (...) labeled More at the bottom of the screen. Select Report Phishing and follow any prompts.

Option 2: Open the message. At the top of the message, tap the ellipsis (...). Choose Report Message, then select Report as phishing from the list. Follow any prompts that appear.

Not sure if it's phishing? Report it anyway. The Report Message tool validates whether the message is genuinely malicious and allows IT to take action if needed. When in doubt, report it rather than interacting with the message.

Additional Help

If you need further assistance, you have several options:

  • Bowdoin Bot: Chat with Bowdoin Bot directly from any KB page for instant answers.
  • Phone: Call the Bowdoin College Service Desk at (207) 725-3030.
  • In person: Visit the Tech Hub in Smith Union during business hours.
  • Submit a ticket: Request assistance through the Service Catalog.
Print Article

Related Articles (4)

DMARC
Explains what DMARC is, how it works, and why Bowdoin uses it. DMARC is an email authentication protocol that prevents others from sending emails using the bowdoin.edu domain without Bowdoin's authorization. No action is required from faculty, staff, or students.
Microsoft 365 (M365) Email Protection
Explains the two layers of Microsoft 365 email protection at Bowdoin — Exchange Online Protection (EOP) and Microsoft Defender for Office 365. Covers how spam, phishing, malware, and suspicious links are filtered, what users will see when protection is active, and what to do if a legitimate message is blocked.
Microsoft 365 External tag on new email messages
Explains the "External" tag that appears on email messages sent to Bowdoin addresses from outside the bowdoin.edu domain. Covers why the tag appears, what it means, and how to use it to identify potential phishing attempts.
Understanding Spam, Phishing, and Junk Email
Explains the types of unwanted email Bowdoin users may receive - phishing, bulk, and spam - how to identify them, and what to do if you receive or fall victim to one.