Table of contents
c) Mobile
Overall Flow Diagram
IMPORTANT: If you already see a Report button in Outlook, there’s no need to install the Report Message add-in—the reporting feature is already available to you.
However, if the Report button is missing in your Outlook, please proceed with Step 1 to install the Report Message add-in.
Step 1: Add Mail Contact in the Exchange admin center
Now that the plugin is installed, it’s time to set up the Right-Hand reporting email contact.
To do this, log in to your Exchange Admin Center, then go to Recipients > Contacts to add the reporting email.
Click Add a mail contact.
In the New Mail Contact pane, type your details:
a) Display Name: The name that would appear on the Contacts page.
b) Alias: Type PhishArm as the Alias name.
c) External email address: Type [email protected] as a contact.
Click Next. The Mail contact information (optional) appears.
Click Next.
The Review mail contact displays the summary of data entered.
Review the data and click Create.
The new contact will take a while to appear on the Contacts page. You can refresh the page or wait for some more time for the contact to occur.
Step 2: Configure the Microsoft native report button and Internal mailbox
Important: As per Microsoft’s latest guidelines, phishing simulation reports should be sent to a dedicated internal mailbox. Please create one for your organization.
Once the mail contact is set up, the next step is to enable the feature and configure a few important policies and rules in Microsoft 365 Defender.
Follow the steps below to enable the settings and set up the necessary rules:
Log in to your Microsoft 365 Defender portal and navigate to Settings > Email & collaboration > User reported settings.
On the User reported settings page, enable the toggle button.
Select the built-in reporting option, as it is easy to report.
You can configure messaging criteria based on your company’s needs. Select the Customize messages option, choose your preferred language for the prompt, set new messages in each tab, and click save.
Inside the reported email destination, select Microsoft and My reporting mailbox only" or "My reporting mailbox only" from Send reported messages to: field.
Important: Provide the email address of the internal reporting mailbox where these reports will be sent.
6. Click on the Save button.
Now, the Microsoft plugin has been configured.
Step 3: Add Mail flow rules in the Exchange admin center
Step 4: Report the Phishing Email
Now, log in to Outlook and report the email. Below are various ways to report emails from different devices/operating systems. Choose the method that suits you appropriately.
Desktop App- Windows
Open the email you want to report.
a) From the top menu, click the Report drop-down and select Phishing/Junk. The email will be reported and will appear on the Right-Hand PhishArm dashboard. (In Step 2, if you have selected Ask me before reporting, you’ll be prompted to confirm your actions.)
Desktop App- Mac
Right-click on the email you want to report.
a) Select Report > Report Phishing/Junk. The email will be reported and will appear on the Right-Hand PhishArm dashboard. (In Step 2, if you have selected Ask me before reporting, you’ll be prompted to confirm your actions.)
Mobile
Open the email you want to report.
a) Tap on the three dots option.
b) Tap on Report and then select Phishing/Junk.
The reported email will now appear in the Right-Hand portal.
Frequently Asked Questions (FAQ)
Q) What should you do if your company wants to send all emails to PhishArm Dashboard?
Ans) Only Enable the rule by following Step 4 part (A) to help you integrate the report button to send all emails to the PhishArm Dashboard.
Q) What should you do if your company wants to send all emails to Microsoft except simulation emails, which need to go to PhishArm Dashboard?
Ans) Only Enable the rule by following Step 4 part (B) to help you integrate the report button to send all emails to Microsoft except simulation emails.