Phishing emails are malicious messages designed to steal credentials or deliver malware. Reporting suspicious emails helps Forge Marketing protect sensitive company data and prevent security breaches.

Step-by-Step Guide

Step 1: Identify a Phishing Email

Common signs include:

• Unexpected emails asking for login credentials or personal information
• Messages with urgent requests or threats
• Emails with spelling errors, unusual formatting, or suspicious links
• Emails from unknown senders or unexpected attachments

Step 2: Do Not Interact

• Do not click any links or attachments.
• Do not reply to the sender.
• Avoid forwarding to others outside the IT team.

Step 3: Report the Email

1. Use the “Report Phishing” button in your email client (Outlook, Gmail, etc.).
2. Alternatively, forward the email to IT Security (Daniel Fox / Emma Ward) with the subject line:
   1. Phishing Report: [Email Subject]
3. Include any details about why you suspect it is phishing.

Step 4: Delete the Email

• Once reported, delete the phishing email from your inbox and trash.

Step 5: Best Practices

• Always verify unexpected requests with the sender via a separate channel.
• Use strong, unique passwords and enable two-factor authentication (2FA).
• Stay vigilant for suspicious activity in your accounts.
• Regularly participate in Forge Marketing security awareness training.