Cybersecurity tip: Got a suspicious email? Use the Phish Alert Report button in Outlook

IT & Epic

Cybersecurity is crucial to protect our health system and our patients, and phishing attacks through email pose one of the biggest risks.

What can you do, as a team member, to help prevent phishing attacks? You can correctly use the Phish Alert Report button located in your Outlook email. With just a couple of clicks, you can report potentially dangerous emails to our IT Security team, giving them the information they need to defend against the effects of malicious email attacks.

If you haven’t used this button, please make it a regular part of your work routine. Anytime you see a potential phishing email, please report it to our IT Security team!

Remember, as a team member, you are the last line of defense for Ballad Health against email-based criminal activity. Never click on a link or open an attachment in any unexpected or unsolicited email; don’t take the bait!

Note: These mobile device instructions below apply only to your Ballad Health Outlook email.

How do you use the Phishing Alert Report button?

From a Ballad Health network device

  1. While viewing your email, you can find the Phish Alert Report button in the Outlook ribbon at the top of your screen. Locate the envelope icon with the orange “fish hook.”
  2. To report suspected phishing emails, click the Phish Alert button in the ribbon, or in the text link at the top of the email.
  3. Once you click to report, the pop-up will prompt you to confirm your action. Once confirmed, the suspicious email will be immediately forwarded to the IT Security team.

From an iPhone

  1. In the email, find the ellipsis (three vertical dots) along the top, located just under the time stamp that shows when the email was sent, and tap there.
  2. A page will pop up with several options, such as “Mark as unread”, “Flag”, “Reply”, etc.
  3. The Phish Alert button is located at the top left. Tap the Phish Alert.
  4. A message from KnowBe4 will appear, asking you to confirm this as a phishing email. At the bottom, tap the blue bar that says “Phish Alert.” Once confirmed, the suspicious email will be immediately forwarded to the IT Security team.

From an Android

  1. In the email, tap the ellipsis (three vertical dots) just underneath the time stamp that shows when the email was sent.
  2. A window from the bottom of the screen will pop up with several options, such as “Mark as unread”, “Flag”, “Reply”, etc.
  3. Scroll to the bottom of this screen and there will be a “Phish Alert” icon at the bottom.
  4. Once you click the “Phish Alert” button to report, the pop-up will prompt you to confirm your action. Once confirmed, the suspicious email will be immediately forwarded to the IT Security team.

If you believe it’s phishing, report it

Phishing messages are bulk emails, typically appearing to be from a reputable source, that ask you to take a specific action that can cause damage to you or your organization. These messages are malicious.

Spear phishing emails are targeted attacks on a person or organization, occurring after detailed research in order to make them seem especially real. These messages are extremely malicious and can lead to very damaging consequences.

Report these using the Phish Alert Report button!

Questions?

If you have questions about how to identify phishing emails and spam, check out this previous article in Ballad Health News, or contact the IT Service Desk directly by calling 423-431-6290.

Related News
Phase 2 update of time clocks is underway; here's what you need to know
Read story
Don't forget: If you're signed up for MyChart, you're eligible to win a $500 Visa gift card!
Read story
Epic users, you can become a Smart User! Here's what you need to know
Read story