Log in links for this page

How to Report a Phishing Email

The following guide will outline the method for alerting the appropriate EOTSS personnel if you believe you have received a phishing email.

EOTSS Security Operations Center

Online

The Details of How to Report a Phishing Email

What you need for How to Report a Phishing Email

The Commonwealth has been, and will continue to be, a target of phishing schemes and other web-based scams. It is incumbent upon us to remain vigilant.

Please follow the steps listed below if you have reason to believe you received a phishing email. 

How to report How to Report a Phishing Email

Report the phishing email to the EOTSS Security Operations Center: eotss-soc@mass.gov

The easiest way is to forward a copy of the email as an attachment

Forward Email as Attachment

  1. Select the email in the message list.

  2. On the main Outlook Ribbon, select More Forward as attachment. See instructions for newer versions of Outlook.

    Forward a message as an attachment

  3. Send the email to the EOTSS Security Operations Center at eotss-soc@mass.gov.

  4. Delete the suspicious message.

Alternative Method

Create New Outlook Message (Drag and Drop)

  1. Create a New Outlook Message
  2. Drag the suspicious message into the New Message
  3. Address the New Message to: eotss-soc@mass.gov and SEND
  4. Delete the suspicious message

Next steps for How to Report a Phishing Email

What if I interacted with the Phishing Email?

In most cases, phishing emails can be deleted and ignored once appropriately reported. However, if you've interacted with a phishing email, such as clicked on a link or provided sensitive information in response, please reach out to the EOTSS Security Operations Center to discuss next steps.

Contact for How to Report a Phishing Email

Online
Feedback