How do I report suspicious emails, text messages or phone calls?

Northwood University's IT uses Proofpoint and InfoSEC to protect your inbox, but some suspicious emails may still get through. If you receive one:

1. Pause and review the email
2. Verify the sender for misspellings or unusual domains
3. Avoid clicking links or downloading attachments
4. Check for urgency or threats
5. Verify requests for personal info or transactions
6. Report, using Outlook, by clicking on the PhishNotify (red fish icon) button - you no longer need to contact the IT Help Desk
   • If you're using a different mail application or a university shared mailbox (i.e. hr, studentlife, etc) forward the suspicious email to fakeemail[AT]northwood[DOT]edu 
7. Wait for IT Security to review the email

PhishNotify is the preferred way identify both phishing simulation emails from the IT Security team and real phishing emails. Using the red fish icon consistently for any questionable emails can help reduce the number of suspicious emails received by you and others in the Northwood community.

If you receive a suspicious call, whether from a computer or a person asking for personal information:

1. Hang up immediately
2. Do not follow any instructions from the caller
3. Never disclose personal information
4. Do not engage with the caller's prompts
5. Report scams and fraud to the Federal Trade Commission (FTC) - you no longer need to contact the IT Help Desk
6. Add your number to the FTC's Do Not Call Registry
7. Block the caller using your phone's settings
   • iPhone/iPads - Avoid unwanted calls
   • Androids - Avoid unwanted calls
     • NOTE: Your approach might differ based on your phone's manufacturer. For precise instructions, please search online for your specific phone make and model