What to do if you get a phishing email

4 February 2026

Phishing emails are fraudulent communications designed to deceive recipients into disclosing sensitive information, such as account details. Cyber attackers may use this information to access confidential data and compromise our systems, potentially resulting in significant security breaches.

For more guidance on identifying common indicators of phishing, please take a look at our phishing page on the learning centre.

What to do if you think you've received a phishing email:

1. Do not open any attachments or click any links in the email.
2. Report the email as a phishing email through Outlook. You can do this by selecting the report shield icon in your Outlook application. The appearance of the icon may vary depending on the version of Outlook you are using.