Skip to content
Search
Support
 Select language
English
Cancel

Phish Alert Button

Give your employees a safe way to report phishing attacks with one click.

Why Phishing Reporting Matters

Do your users know what to do when they receive a suspicious email?

Should they call the help desk, or forward it? Should they forward to IT including all headers? Delete and not report it, forfeiting a possible early warning?

KnowBe4’s free Phish Alert Button is a phishing reporting tool that gives your users a safe way to forward email threats to the security team for analysis and deletes the email from the user's inbox to prevent future exposure. All with just one click! 

Phish Alert Benefits

  • Reinforces your organization’s security culture
  • Users can report suspicious emails with just one click
  • Incident Response gets early phishing alerts from users, creating a network of “sensors”
  • Email is deleted from the user's inbox to prevent future exposure
  • Easy deployment via .EXE file for Outlook, Google Workspace deployment for Gmail (Chrome) and manifest install for Microsoft 365

The Phish Alert Button (PAB) is a one-click phishing reporting tool that allows employees to safely report suspicious emails directly to your security team. By simplifying phishing reporting, organizations can reduce response time, improve visibility into threats, and strengthen their overall security culture.

Note: The Phish Alert Button supports Outlook 2010, 2013, 2016 & Outlook for Microsoft 365, Exchange 2013 & 2016, Chrome 54 and later (Linux, OS X and Windows) and Outlook Mobile!

Phish Alert Button FAQs

What is a phishing reporting button?

A phishing reporting button is a tool built into an email client that allows users to report suspicious emails directly to their security team with one click. Instead of forwarding messages manually or ignoring potential threats, employees can quickly escalate suspicious emails for analysis, helping organizations detect phishing attacks earlier and reduce overall risk.

How does the Phish Alert Button work?

The Phish Alert Button adds a reporting button to supported email clients. When a user clicks the button, the suspicious email is forwarded to the organization’s designated security inbox or incident response team for analysis. The email is then removed from the user’s inbox to prevent accidental interaction. This creates a simple, standardized reporting process across the organization.

How often should you use the Phish Alert Button?

Employees should use the Phish Alert Button any time they receive an email that appears suspicious, unexpected, or potentially malicious. Encouraging a “report first” mindset helps security teams gain visibility into emerging phishing attempts and reinforces proactive security behavior across the organization.

Does the Phish Alert Button work with Microsoft 365?

Yes. The Phish Alert Button supports Microsoft 365 environments and can be deployed via manifest install. It is also compatible with Outlook and Outlook Mobile, allowing users to report suspicious emails across supported desktop and mobile environments.

How does the Phish Alert Button improve phishing response?

The Phish Alert Button improves phishing response by turning employees into early warning sensors. Faster reporting helps incident response teams identify and remediate phishing campaigns before they spread widely. By standardizing and simplifying reporting, organizations reduce time-to-detection and strengthen their overall email security posture.
I want my Free Phish Alert