Reporting phishing and suspicious emails in Outlook

As an IT administrator, promoting the use of the Report button in Outlook is a simple but effective way to strengthen your organization’s email security posture.

Why it matters:
When users report suspicious emails, it helps your security team detect and respond to threats faster — especially phishing attempts. It also contributes to Microsoft's threat intelligence, improving protection over time.

Encouraging your users to report rather than ignore suspicious emails fosters a proactive security culture.

Remember: Better safe than sorry.

Nimblr Simulations:
If you’ve configured whitelisting for Nimblr’s phishing simulations according to our documentation, reported simulation emails will appear clearly labeled as simulations in Microsoft’s Threat Explorer and other security reporting tools. This means your users can practice reporting, and you can track engagement — without confusion.

Key benefits:

• Empowers users to actively participate in phishing defense

• Improves incident response visibility

• Enhances Microsoft Defender’s detection through user feedback

• Seamlessly integrates with Nimblr’s training simulations
  
  

Learn more:

🔗 Use the Report Message add-in – Microsoft Docs

What to do next:

• Deploy the Report Message or Report Phishing add-in organization-wide

• Remind users to report anything suspicious — real or simulated

• Reassure users that false alarms are OK, and reporting simulations is encouraged

Used correctly, the Report button becomes a low-effort, high-impact tool in your security toolkit — especially when paired with awareness training from Nimblr.