About the Cofense PhishMe Reporter add-in

On this page:


Overview

Cofense PhishMe Reporter is an add-in for Outlook (available for both Windows and Mac) that allows you to quickly report suspected phishing messages. For more about the software, see Cofense Reporter.

PhishMe Reporter is available to everyone at Indiana University. Contact talk2uits@iu.edu for more information.

Get PhishMe Reporter

Using IUware, download and install PhishMe Reporter:

Report a phish

When you receive email that appears to be a phishing attempt, follow the appropriate instructions.

Outlook for Windows

  1. In Outlook, select the message you've identified as a phishing attempt.
  2. Click the Report Phishing icon on the top right of your Home tab.
  3. In the dialog box that opens, click OK to report the message to the Incident Response team. The Report Phishing application will delete the selected message, and send it with headers to PHISHING@iu.edu on your behalf.

Outlook for macOS

  1. In Outlook, select the message you've identified as a phishing attempt.
  2. Launch the Report Phishing application located in the Applications folder.
  3. In the dialog box that opens, click OK to report the message to the Incident Response team. Outlook will then display an automatic warning alerting you that a third-party application is attempting to use it to send mail:

    A script is attempting to send a message. Some scripts can contain viruses or otherwise be harmful to your computer, so it's important to verify that the script was created by a trustworthy source.

    Do you want to send the message?

    Note:
    UITS recommends that you do not select Don't show this message again, to keep the safeguard in place within Outlook.
  4. Click Send, and the Report Phishing application will delete the selected message, and send it with headers to PHISHING@iu.edu on your behalf.
    Note:

    On macOS Catalina and later, when attempting to report a phish, you will see an error something like the following:

    Can't get file "tmp:foward.zip" of <<class outm>> id 57163 of application "Microsoft Outlook".

    Click OK to dismiss the error, and then go to your Drafts folder. You should see a draft of the phishing email, including the headers, addressed to phishing@iu.edu. Send this draft to complete the phishing report.

This is document aogv in the Knowledge Base.
Last modified on 2021-07-26 16:04:18.