Reporting a Phishing Scam or Suspicious Email for Review

Overview

Although your first instinct may be to ignore or delete suspicious emails, we recommend that you report them to our security team. IT will examine the email and advise you of any further steps you may need to take.

How to Send a Phishing Scam or Suspicious Email to Security Team

To report a phishing scam, forward the phishing email as an attachment to incident@northcentral.edu using the following methods.

Outlook Desktop

  1. Select the suspicious email in Outlook.
  2. Press Control-Alt-F. This will open a draft email message with the suspicious email as an attachment.
  3. Add incident@northcentral.edu in the To: field of the draft email message.
  4. Send the email.

Outlook Online / Office 365

  1. Select New to compose a new message.
  2. In the upper right-hand corner of the new message, click the icon to compose the message in its own window.
  3. Drag the suspicious email into the body of the new message. This will add the suspicious email as an attachment.
  4. Add incident@northcentral.edu in the To: field of the draft email message.
  5. Send the email.

Gmail

  1. Open the suspicious email, but do not click on any links or open any attachments.
  2. Click on the More button on the right side next to the date the email was sent. 
  3. From the drop-down menu, select Show original.
  4. Click on the page and then click CTRL + A to select all the text.
  5. With all the text selected, click CTRL + C to copy all of the text.
  6. Click the Compose button on the left side of the screen to start a new email.
  7. In the message section of the new email, click CTRL + V to paste the text.
  8. Add incident@northcentral.edu in the To: field of the draft email message.
  9. Send the email.

Apple Mail

  1. Select the suspicious email in Mail.
  2. Select Message, then Forward as Attachment from the menu bar (or right-click and select Forward as Attachment).
  3. Add incident@northcentral.edu in the To: field of the draft email message.
  4. Send the email.

Why do we request forwarding as an attachment?

When you forward the message as a regular email, full headers are not included. Without the full headers, the investigation of the suspicious email becomes more challenging.

Full headers provide information about the path the message traveled to get to your inbox. These headers are critical for Cybersecurity staff members investigating the origins of an email message.

Simple headers (to/from) can be forged, so full headers are an important step to diagnosing, containing, and possibly preventing more phishing attempts.

Audience

Employees and Students

Details

Article ID: 72276
Created
Tue 2/19/19 7:44 PM
Modified
Mon 4/24/23 4:03 PM
Audience
Employees
Students

Related Articles (1)

Help! I Have Been Phished!
Learn what actions you should take to protect your accounts and report the incident.

Related Services / Offerings (1)

Security Incident Response and Consulting
IT prioritizes keeping your information secure. IT works hard to maintain confidentiality, integrity, and to prevent information from being compromised. You can benefit from consulting with our office by obtaining the necessary tools and information to keep you, your information, and your computer safe.