Phishing emails are among the most common threats facing universities today. These messages appear legitimate, enticing you to click on malicious links, download harmful attachments, or give away sensitive information.

At UT, we rely on your help to identify and stop these threats. That’s why reporting suspicious emails is essential—not just deleting them.

What Happens When You Delete Without Reporting?

Deleting a phishing email removes it from your inbox, but it doesn’t help us protect others. Without a report, we may not know the attack occurred, allowing the possibility of others to fall victim to the same message.

Why It’s Better to Report a Suspicious Email 

Using the “Report Phish” button within your Outlook Menu directly alerts the OIT Security team, allowing us to:

• Analyze the message and determine if others on campus received it.
• Block malicious links or attachments.
• Strengthen UT defenses against future attacks.

Simple Steps to Report a Phishing Email in Outlook

1. Be mindful when scanning and checking your inbox.
2. Identify any suspicious emails before opening.
3. Click the “Report Phish” button in the Outlook toolbar.
   View detailed instructions in OIT Knowledge Base,
   Phishing: Reporting Suspicious Messages and Best Practices.
   

The suspicious email will be sent to the OIT security team for analysis. Reporting is quick, easy, and makes a big difference in keeping UT and personal data safe.

Even if you’re unsure whether an email is malicious—it’s always better to report it. You’re never bothering us—we appreciate every report. Our team will review the email and take appropriate action.

When in Doubt, Report It