Instructions for Reporting a Phishing Scam

The UCLA Information Security Office requests that campus users report phishing messages to our team so that we can proactively alert campus users and bring awareness to widespread phishing campaigns. In order for the Information Security Office to take action in response to a reported phishing message, please refer to the following instructions for your email client.

Instructions

  1. Double-click and open the email. Click File then click on Save As.

    Phishing instructions-windows
     
  2. Appropriately name the message, select your save location, and then click Save.

    Phishing instructions-windows
     
  3. Compose a new email addressed to security@ucla.edu, and attach the saved phishing email from the location it was copied to. Use a subject line that identifies the email as a phish.

    Phishing instructions-windows
     
    1. If you are replying to an existing open phish report, attach that saved phishing email as a reply to that message.

      Phishing instructions-windows

  1. Click one to highlight the email and Click, Hold, Drag, and Release the email to your Desktop or desired location to copy.

    Phishing instructions-mac
    1. Compose a new email addressed to security@ucla.edu, and attach the saved phishing email from the location it was copied to. Use a subject line that identifies the email as a phish.

      Phishing instructions-mac
       
  2. Alternatively, using the keyboard shortcut Control+⌘ (Command) +J will compose a new message with the original email attached.
    1. Address this email to security@ucla.edu with a subject that identifies the email as a phish.

      Phishing instructions-mac

  1. When viewing the message you wish to report, click on the drop-down arrow next to the reply button.
  2. Click on Show Original, and a new tab on your browser will open.

    Gmail phishing reporting instructions
     
  3. On the new tab, click Download Original.
    1. Compose a new email addressed to security@ucla.edu, and attach the saved phishing email from the location it was copied to. Use a subject line that identifies the email as a phish.


      Phishing instructions-gmail