Getting Started: Phishing Reporter Customization and Deployment

Phishing Reporter is an add-in that allows users to easily report a suspicious email to cyber security teams. This add-on is compatible with Outlook, Outlook Web Access, Outlook Desktop, Outlook Mobile, Office 365, and Google Workspace environments.


ℹ️ When the add-in is distributed over Office 365 or Google Workspace, it is automatically installed and active for all users. Add-in user information is only available for those using Outlook Desktop (with the MSI extension).

Configuring the Phishing Reporter


Go to the Phishing Reporter page from the left sidebar menu of the dashboard and select Users > Settings. Customization is available to four features:


Add-in Settings

You can customize any of the following fields of the add-in:
Add-in Name Name of the add-in
Brand Name Company name used for the add-in
Add-in Logo
For best results, the logo used should be 128px (w) :128px (h).
The maximum disk image size is 2 MB; .gif, .png, .jpg, and .svg formats are acceptable.
Dialog Box Heading Header information used in pop-up messages
Confirm Button Label Yes button text used in confirmation messages
No Button Label No button text used in confirmation messages
Cancel Button Label Cancel button text used in confirmation messages
Okay Button Label Okay button text used in confirmation messages
Instant Report Message Text that will appear after a user reports a suspicious email
Connection Error Message Text that will appear if the server cannot be accessed when a report is attempted
Sending Error Message Text that will appear if the reported email is not delivered to the platform
No Email Selected Message Text that will appear if the user tries to report an email without selecting an email
Bad Format Email Message Text that will appear if the user tries to report an email that is not eligible for reporting
Show Confirmation Message When Reporting Email You must check this box if you wish to include a confirmation message window for a reported email. The text of the message can be edited here.
Show Confirmation Message When Deleting Email This option opens a dialog box that allows you to remove the associated email after a report. The text of the message can be edited here..
Warning Label You have the option to add a message as a tag to the reported email to warn the reported user.

Click the Next button to go to the next page and save your changes in the first time customization. When the first customization is done, you can use the Save Changes button to save your changes or use Save and Download button to save your settings and download the add-in immediately.



Email Settings
You can configure the add-in to send a reported email to the SOC or IT team as an attachment in .msg format (or .eml where supported) by checking the  Send Information Email for Reported Incidents box. You can customize the following settings:
Recipient Email Address Email address that will receive the reported e-mail
CC Optional additional recipient
BCC Optional additional blind copy recipient
Email Subject Subject line for the email used when reporting a suspicious email
Email Message Message template for the email used when reporting a suspicious email

Click the Next button to go to the next page and save your changes in the first time customization. When the first customization is done, you can use the Save Changes button to save your changes or use Save and Download button to save your settings and download the add-in immediately.


Other Settings

You can also customize additional settings:

Proxy Settings If users are accessing the internet through a proxy, you can enable the plugin to detect the proxy configuration of the computer where it will be installed.
Site URL
API address that will be used when reporting an email via the add-in.
Please contact the support team if a change is needed.
API Key
The API key is to be used in the add-in to communicate with the platform.
Please contact the support team if a change is needed.
Company ID
The Company ID is to be used in the add-in to communicate with the platform.
Please contact the support team if a change is needed.
Enterprise Vault The suspicious email can be searched in the user's backup emails during the investigation.

Click the Next button to go to the next page and save your changes in the first time customization. When the first customization is done, you can use the Save Changes button to save your changes or use Save and Download button to save your settings and download the add-in immediately.


 

Diagnostic Tool

The Diagnostic Tool provides information about the status of the add-in by sending the statistics of the add-in to the platform regularly. The advanced level of awareness presented makes distribution and regulation of the add-in easier for system admins. For example, if the add-in has been disabled by a user or for any reason, the tool can be used to ensure automatic activation or report the situation to the platform for system admins to be aware of this case.

ℹ️ The Diagnostic Tool is designed only for use on Outlook Desktop add-in with the MSI extension. When the add-in is distributed over Office 365 or Google Workspace, it is automatically installed and active for all users.

Check and Enable All Disabled Add-ins Automatically The reporter add-in can be enabled automatically if it is not enabled for a reason.
Proxy Settings If users are accessing the internet through a proxy, you can enable the plugin to detect or use the defined proxy configuration of the computer where it will be installed.

Happy with your configuration? Let's deploy:

How to Deploy the Add-in in Microsoft 365
How to Deploy the Add-in in Exchange Admin Center
How to Deploy the Add-in in Google Workspace