How to use the Phish Hook Button

Support Desk
  • Updated
Follow

If your organisation has recently rolled out the Phishing Tackle Phish Hook button to your mail client, use this guide to learn how it works and in what situations you may find it useful.

NOTE: The Phish Hook Button will only forward non-simulated emails to avoid false alarms in your nominated forwarding mailbox.

You can click any of the links below to jump to the relevant section:

What is it?

Reporting suspicious or malicious emails enables your security team to better understand which threats are bypassing your organisation’s defences. This helps improve future protections against phishing and similar attacks.

It also encourages user engagement in maintaining organisational security, fostering a cyber-secure culture where everyone adopts a security-first mindset.

Phish_Hook_Button_HQ.png

 

Why should I use it?

Reporting suspicious or malicious emails enables your security team to better understand which threats are bypassing your organisation's defences. This allows for improved security measures against ongoing phishing attacks and similar threats.

The reporting process also keeps you engaged in your organisation's security, which is crucial for fostering a cyber-secure culture where all users adopt a security-first mindset.

 

How do I use it?

Click the Phish Hook button if you suspect you have received a phishing or malicious email. Once the report button is clicked, the email will be deleted from your inbox and forwarded to the designated contact within your organisation.

 

Please do not use the Phish Hook button to report spam or marketing emails. Instead, you can delete these emails or add the sender to your block list. The Phish Hook button should only be used for emails you believe to be dangerous, to prevent inundating your security department with false alarms.

 

NOTE: The method for adding a sender/domain to your block list varies by email client. Contact your IT support for instructions for your specific client.

 

Using the Phish Hook Button for Outlook (Desktop)

After the Phish Hook button is installed, you will see it in your Outlook Desktop client (pictured below).

Outlook_Desktop_PhishHook_Button.png

  1. Select an email you believe to be suspicious and click the Phish Hook button on the top ribbon.
    • A dialogue box will appear on the right displaying the email details and requesting confirmation to report it.
  2. Click the report button to send the potentially dangerous email to your security contact for analysis.
    • A success message will appear at the bottom of the dialogue box, and the email will be deleted from your inbox.

Please note:

  • The dialogue box may have different colours/styles based on your organisation's settings.
  • If your Outlook ribbon is collapsed, click the ellipsis ('...') first to access the button.
    How_to_use_the_Phish_Hook_button_-_collapsed_menu.png

 

Using the Phish Hook Button for Outlook Web Access (OWA)

  1. Select a suspicious email and click the app icon in the bar options at the top right of the email.OWA ss1.png

  2. Click "Phish Hook". A dialogue box will appear on the right displaying the email details.
    OWA ss2.png

  3. Click the report button to send the potentially dangerous email to your security contact for analysis.
    • NOTE: Depending on your organisation's settings, the dialogue box may have different colours, styles, or text.
      OWA ss3.png
  4. Once the message is reported, a success message will appear at the bottom of the dialogue box, and the email will be deleted from your inbox.

Using the Phish Hook Button for the Outlook Mobile App

  1. Open the Outlook mobile app and select the suspicious email.

  2. Tap the three dots below the time and choose Phish Hook from the list of available add-ins.

    IMG_3588.jpg

  3. A menu will appear showing email details.

  4. Select 'Report Email' to report the suspicious email to your security contact for analysis.
    • NOTE: Depending on your organisations settings, the dialogue box may have different colours, styles, or text.
      IMG_3589.jpg

  5. The email will be removed from your inbox.

Using the Phish Hook Button for Gmail Desktop

  1. In Gmail, select a suspicious email that you would like to report.

  2. Click the Phish Hook button image located on the right-hand side of the email.

    Gmail ss1.png

  3. Click the 'Report Email' button to report the potentially dangerous email to your security contact for analysis.
    • NOTE: Depending on your organisation's settings, the dialogue box may have different colours, styles, or text.
      Gmail ss2.png
  4. The email will then be deleted from your inbox.

Using the Phish Hook button for Gmail Mobile

  1. In the Gmail mobile application, select a suspicious email that you would like to report.
  2. Scroll to the bottom of the email and click the Phish Hook button, which will be displayed within 'Available add-ons'.
    Gmail Mobile ss1.jpg

  3. A new menu will be opened that displays details about the email you are reporting.
  4. Select 'Report Email' to report the suspicious email to your security contact for analysis.
    • NOTE: Depending on your organisations settings, the dialogue box may have different colours, styles, or text.
      Gmail Mobile ss2.jpg
  5. The email will then be removed from your inbox.

 

Please let us know if you require any further assistance, you can contact our support team by clicking here. Or by sending an email to support@phishingtackle.com

Related articles