Skip to main content

How to Install and Use the Phish Alert Button for the Outlook Mobile App (iOS and Android) and Microsoft 365

The Phish Alert Button (PAB) add-in for the Microsoft Outlook mobile app (iOS and Android) and Microsoft 365 gives your end-users the ability to report suspicious emails from not only your computer but also from their mobile inbox. This empowers employees to take an active role in managing the problem of phishing and other types of malicious emails.

 

How Do I Use It?

Depending on your device and email client, the steps for reporting an email using the PAB may vary. However, the reported email will be automatically forwarded to your organization's designated contact regardless of the device and email client used. Below are PAB how-to steps for

  • Microsoft 365 (Webmail)
  • Outlook App (Android)
  • Outlook App (iOS)

Microsoft 365 (Webmail)

Once the PAB add-in is installed, the PAB icon will appear in the drop-down menu of an open email.

Office 365 PAB 

To report an email as a phishing email:

  1. Click the PAB icon.
  2. A sidebar prompt will ask you if you are sure you want to report the email as a phishing email. Click the Phish Alert button to report the email.

Outlook Mobile App (Android)

To report an email as a phishing email:

  1. On any open email, tap the three dots at the top-right of the screen.

  1. The Phish Alert add-in will appear. Tap the Phish Alert add-in.

  2. A prompt will ask you if you are sure you want to report the email as a phishing email. Tap the Mobile Phish Alert button to report the email. 
  3. If you have successfully reported a simulated phishing email sent on behalf of your organization, a congratulatory message will display. Click OK to close it.

 

Outlook Mobile App (iOS)

To report an email as a phishing email:

  1. On any open email, tap the three dots at the top-right of the screen.

  1. The Phish Alert add-in will appear. Tap the Phish Alert add-in.

  2. A prompt will ask you if you are sure you want to report the email as a phishing email. Tap the Phish Alert button to report the email.

     

  3. If you have successfully reported a simulated phishing email sent on behalf of your organization, a congratulatory message will display. Click OK to close it.

     

 

Why Should I Use It?

Reporting emails will help your organization stay safer. The potential phishing emails you report are sent to your organization for analysis allowing for your organization to become aware of which phishing attacks are reaching their employee inboxes.

Once your organization is aware of possible vulnerabilities, they can better defend against them. You are an important part of the process of keeping your organization safe from cybercriminals. So remember to "Stop, Look, and Think!".