Reporting Suspicious Email
Below you will find tips on what makes an email suspicious and how to report them automatically through Outlook or manually through email.
What makes an email suspicious?
-
Email address is not what you would expect or is slightly off. (Example: You would expect 'microsoft.com' but you see 'microsof1t.com')
-
Generic greetings like 'Dear Customer'
-
Poor grammar and/or spelling.
-
Suspicious links or URLs. Hover over links and inspect the URL before clicking and look for anomalies. Is it jumbled up, long, or unfamiliar?
-
High urgency or threats.
-
Unusual attachments such as .zip, .exe. or anything that asks to enable macros.
-
Unsolicited requests for passwords, banking information or identification information.
How to report suspicious emails
Flowchart of How to report a suspicious email
When using Outlook, on the Home menu in the ribbon, click the shield icon. A drop down will appear and you can choose Report Phishing.
-
If you have any questions about using the Outlook Report Phishing feature, please contact the EBIT Service Desk by calling (785) 296-4999 or 1-833-765-2001, or during business hours by emailing EBITSM@ks.gov.
You can also submit an email manually to KISO.Sandbox@ks.gov by creating a new email and dragging the suspected email from your inbox into the new email. Type 'Suspicious email' in the subject.
-
To follow up on your submission, wait at least a business day and email kiso_soc@ks.gov.
In addition, users may also email da_it_security@ks.gov for assistance with security questions.
