The Report Phishing Outlook add-in (also referred to as the COM add-in) allows your users to report phishing emails they receive in their inboxes in the Outlook desktop app. Reported phishing emails will be counted in your testing data. The Report Phishing COM add-in only works on Outlook desktop and does not require a Microsoft (Office) 365 account. It only works on 64-bit versions of Outlook that are running on a 64-bit Windows machine. It is not supported on terminal server environments. Note that the Report Phishing COM add-in is not the same as the Microsoft KillPhish add-in or the Google Workspace/Gmail KillPhish Lite add-in.
This article describes how to set up the Report Phishing Outlook desktop COM add-in.
Note: If you deployed the COM add-in prior to August 2, 20222, you will need to configure an incoming mail server on the Mail Settings page in order for reported actions to be logged on phishing tests.
Download the installer from the following link to our public-facing site: Download Plugin.
Alternatively, you can download the installer from the portal.
Navigate to Administration > Settings > Reporting Settings.
This will open the Reporting Settings page. Click on the Outlook Add-In tab to see the Report Phishing MSI download link and instructions.
You can download the installer by clicking the download icon - - on the Reporting Settings Outlook Add-In tab.
Run the installer, follow the prompts to install the add-in on to your machine.
After running the installer, you must restart Outlook in order for the changes to take effect.
The report phishing add-in will now appear on your Outlook toolbar.
Reporter Email Address
Emails reported using the Outlook desktop add-in will be sent to the Reporter Email Address listed on the Reporting Settings page in Portal.
Note: If you installed the COM add-in prior to August 2, 2022, then it will require an inbox to be configured on the Mail Settings page in order to log reported actions for reported simulated phishing emails. The username of this inbox must be the same as If you do not set up an Incoming Mail Server, then the Reporter Email Address on the Reporting Settings page will receive the emails that are reported using the Outlook desktop add-in.
Additional Reporter Email Addresses
Here you can specify additional inboxes to receive emails reported as phishing.
Delete Emails Reported
With this switch you can specify whether you would like emails marked as phishing deleted from your reporting inbox(es).
In this field you can write a custom response that your users will receive when they report emails as phishing.
Using the Add-In
To use the Report Phishing Outlook add-in, select an email that is suspicious, then click "Report Now" to report phishing emails to the inbox of your choosing.
Click the "Settings" button on the plugin ribbon in Outlook to verify that the settings are correct.
Account: Any SMTP email address that is listed on your Outlook app. The add-in will attempt to locate the Reporter Email Address from your Portal account for the selected email address in the dropdown.
Reporter Email Address: The reporter email address you have set up on your Report Phishing Settings.
Sync settings with account: If, when Outlook is started, the settings from Portal are synced with the add-in.
Automatically delete emails reported: If this feature is selected, all phishing emails that are reported will be deleted automatically.