support@reese.tech

Hurst, Texas

A man with glasses and a beard, wearing a light blue shirt, sits at a desk with a laptop, papers, and a smartphone, smiling. Shelves with folders and plants are in the background.

Report Phishing Emails In Outlook to Protect Yourself and Others

Phishing is a rapidly evolving and pervasive threat, targeting individuals and global organizations alike. Every suspicious email left unreported is a potential gateway for cybercriminals to inflict financial harm, steal sensitive data, or damage reputations. But a simple, proactive step—reporting phishing emails—can make a significant difference in online safety. This article details exactly how you can report phishing emails in Microsoft Outlook and highlights the top three reasons why reporting them is so important.

Understanding Email Phishing

Email phishing is a deceptive tactic where attackers pose as trusted entities to trick recipients into divulging sensitive information, clicking malicious links, or downloading harmful attachments. These emails often mimic real companies or colleagues, leveraging urgency or fear to prompt immediate actions that bypass judgment.

An example is a fake alert from “PayPal” claiming your account has been restricted, using urgent language to pressure you into clicking a counterfeit link and submitting your financial details.

Another example of a phishing email features a spoofed file-sharing notification from a “colleague” prompting you to log in through a bogus website that captures your credentials.

Recognizing these warning signs is essential, as phishing emails exploit trust and haste to bypass your judgment and compromise your personal or organizational security.

How to Report Phishing Emails Using Microsoft Outlook

If you encounter a phishing email, here’s how you can report it.

Reporting Phishing in Outlook for Windows (New and Web Versions)

  • Open Outlook (Windows 11 app or web).
  • Select the suspicious email.
  • Click the ‘More actions’ (three dots) menu or look for the “Report” button.
  • Choose ‘Report phishing’.
  • Confirm your action.

The reported email is submitted to Microsoft for analysis and is removed from your inbox.

Quick tip: You can also right-click the email in your message list, in order to access the ‘Report’ and ‘Report phishing’ options instantly.

A computer screen displays an Outlook inbox with a highlighted email impersonating Costco, claiming the user has won a reward and urging them to click a link to redeem a "Costco Meat Box.

Reporting Phishing in Outlook for Windows (Legacy/Desktop)

If you use the classic desktop app, and ‘Report phishing’ is not available by default:

  • Go to the Home tab.
  • Click ‘All apps’ > ‘Get Add-ins’.
  • Search for and add the ‘Report phishing’ add-in.
  • Select the phishing email, then use the new ‘Report Phishing’ button on the Home tab.

Confirm the action to send the report to Microsoft. The add-in provides a seamless experience similar to the modern versions.

Reporting Phishing in Outlook Mobile

For those using Outlook on mobile:

  • Open the suspicious email.
  • Tap the three-dot menu at the top right.
  • Select ‘Report Junk’.
  • Choose ‘Phishing’.

The message will be reported to Microsoft and deleted from your inbox.

What Happens After You Report?

When you report a phishing email in Outlook:

  • The message is analyzed by Microsoft’s threat intelligence team.
  • Microsoft updates its filters and blocks similar threats, protecting all users.
  • In business environments, your IT/security team is alerted, allowing them to notify colleagues and block further phishing attempts.

The Top 3 Reasons You Should Always Report Phishing Emails

Protect Yourself and Others

Reporting isn’t just about removing one scam email—it’s about stopping the threat for everyone. Each report helps Microsoft and your organization:

  • Detect new phishing campaigns and block them early.
  • Remove malicious emails from all users’ inboxes.
  • Prevent the lateral spread of attacks within your company or community.

By acting fast, you reduce the likelihood of others falling victim to the same scam, which is especially powerful in organizations where attacks often target multiple employees.

Enhance Security Defenses Globally

Every reported email feeds into a global threat intelligence network:

  • Microsoft and major email providers use reported data to upgrade spam filters and cybersecurity systems.
  • Each phishing report helps identify new tactics, malicious domains, and dangerous attachments, leading to continuous improvement of protective measures.
  • IT teams and researchers gain valuable data on emerging threats, which enables the development of smarter, more adaptive security responses for everyone.

Over time, this collective vigilance strengthens security across the entire digital ecosystem.

Fulfill Legal, Compliance, and Reputational Requirements

In many industries, reporting phishing and security incidents isn’t just a best practice; it’s a legal requirement. Timely reporting:

  • Helps organizations meet standards for data protection (GDPR, HIPAA, etc.) and avoid regulatory fines or legal consequences.
  • Sends a powerful signal to customers, partners, and stakeholders that security is taken seriously, thereby protecting the organization’s reputation.
  • Provides a documented trail of proactive defense, crucial if your company ever faces a breach investigation or compliance audit.

Even for personal accounts, reporting is a part of good “digital citizenship”—reducing risks for everyone.

Other Key Benefits of Reporting

  • Faster Threat Mitigation: The quicker a phishing attack is reported, the sooner IT teams or Microsoft can block the source, update rules, and alert others.
  • Raising Awareness: Each report contributes to broader employee or user education—making users savvier against future attacks.
  • Minimizing Financial Loss and Downtime: By stopping phishing attacks early, organizations avoid costly incident response, downtime, and data breaches.
  • Improving Your Inbox: Accurate reporting means fewer phishing messages get through in the future—the system learns from your input.

Frequently Asked Questions

Is deleting a phishing email enough?

No. Deleting only removes it from your inbox. Reporting ensures the threat is investigated, blocked, and others are protected.

Will reporting phishing block the sender?

No, reporting sends the message to Microsoft/IT for analysis but does not automatically block the sender. To block a sender, use the ‘Block’ or ‘Add to Blocked Senders List’ option.

Can I report legitimate messages wrongly marked as phishing?

Yes. Use the “Not Junk” or “Not Phishing” options in Outlook, or forward the email to appropriate support addresses for review.

Conclusion

Phishing is a persistent digital threat with potentially serious consequences. But you have the power to combat it. Reporting phishing emails in Microsoft Outlook is fast and simple—from your desktop, web, or mobile device—and your action makes a tangible difference.

Every report helps build a more secure online community, improves defenses for all, and fulfills vital legal and ethical obligations.

Stay vigilant—report phishing. Make the internet safer for everyone.

DFW Businesses, we've got you covered!

Fast, friendly support when you need it most.

Get Help