Reporting Phishing Emails in O365

Introduction

Phishing is the attempt to acquire sensitive information such as usernames, passwords and credit card details (and sometimes, indirectly, money), often for malicious reasons, by masquerading as a trustworthy entity in an electronic communication, such as email.

As a Lamar email user, you can contribute towards improving phishing email detection. This document provides detailed instructions on how.

Problem Description

The Lamar Email Service is hosted in Microsoft's Office 365 environment.

The accuracy of identifying phishing emails is constantly improved by Microsoft based on the feedback provided by users. 

Report It

To report Phishing emails, you will need to "Submit" the email to Exchange Online Protection (EOP).

To do this, use the following steps:

  1. Log in to The Lamar web email in a browser by visiting lamar.edu > LU connect > LU Email.  (Alternatively, visit luconnect.lamar.edu > LU Email).

LUY Connect

  1. Once you are in your mailbox, select the offending email (e.g. below).

Mail attach

  1. On the Toolbar (the menu also contains the Delete and Archive options), click on the down arrow beside "Report".

Report

  1. Select "Report phishing".

Report Phishing

  1. Click "OK" when presented with the prompt box.

Report Phishing

Optionally Escalating Suspicious Phishing Emails to the IT Security Team

Occasionally, you may optionally escalate suspicious emails to the IT Security and Email Administration Teams for further analysis.

The following techniques preserve valuable envelope information about the suspicious email.

Please Note: You may not get an immediate response to the report.

(Messages are analyzed for delivery and content by the relevant team. They will contact you directly if further information or action is required).

  1. Log in to The Lamar web email in a browser by visiting lamar.edu > LU connect > LU Email. (Alternatively, visit luconnect.lamar.edu > LU Email).

LUY Connect

  1. Click on "New mail" to open a new email window.

New Mail

  1. WARNING: Do Not OPEN any attachments included in the suspicious mail.
  2. In the "to" address, enter: reportspam@lamar.edu.
  3. In the subject, enter: Phishing report.
  4. "Drag and Drop", the suspicious email from your Inbox Window into the New Message Window. The message will appear as an attachment in your new email.
  5. Send email.