Important! Due to changes in Google's 'Terms & Conditions', the add-on in the Google Marketplace may generate a 'not verified' warning. This is due to the add-on requiring revalidation. We're currently working with Google to get the plugin reverified so that this alert does not appear.
In the meantime, it is safe to ignore the alert and proceed with installation.
Add-on overview
The MetaCompliance Phish Reporter provides staff with a new way to report suspicious emails to nominated mailboxes. These 'phishing incident' notifications alert those tasked with remediating business email compromise threats that action is required for that email.
The Phish Reporter can be configured to suit the customer's corporate messaging style, and will appear as an option along the user's sidebar within the Mail Client.
When a user clicks on the button, the currently selected email message will be forwarded to the configured internal mailbox for further action and remediation. The mail is moved from the user's inbox and placed within the Trash folder, thereby removing any threat from the user's Mail Client.
Installation steps
- Populate the Gmail Phish Reporter Add-on Customer Template, and send to the MetaCompliance Support Team. This must be validated and added to the relevant configuration by MetaCompliance.
- The MetaCompliance Support Team will then confirm when the Add-on is available to download. Only move to Step 3 after receiving confirmation from the MetaCompliance Support Team to continue.
- Log in to your Google Workspace Administrator account.
- Navigate to the following URL. (The Add-on will open within the Google Workspace Marketplace.) https://workspace.google.com/marketplace/app/metacompliance_phish_reporter/473125076940
- Select the Domain Install button to proceed with installing the add-on for all users within your Organisation.
- Click Continue on the 'Permissions' pop-out window to proceed:
- Select Allow on the 'Domain Wide Installation Consent' screen to continue with installation:
- The Phish Reporter Add-on should now be installed and available to all users:
Uninstalling the Add-on
- Navigate to Google Admin Apps centre to uninstall the Add-on for all users:
- Select Google Workspace Marketplace apps to locate the Phish Reporter Add-on:
- Select MetaCompliance Phish Reporter.
- To uninstall the add-on for all users, select Delete App:
User Experience
Users can report suspected phishing emails by following the steps below.
- Open the suspected phish email.
- Select the Phish Email Reporter icon on the right-hand menu panel:
- Review the details, confirm the email is a suspected phish, and select Report Email:
- A confirmation message will appear that highlights the email has now been sent to the relevant inbox for review. The reported email will also be moved to the user's Trash folder.
Reporting Internal Emails
If a user attempts to report an email sent from an Internal Domain, the following message, which is customisable, will appear:
After a review, the user can proceed to Report the email as a suspected phish if required.
Reporting Simulated Phish Emails
If a user successfully reports a Simulated Phish email, the following message, which is also customisable, will appear:
All reported emails will also be available for review within the 'Reported Emails' report on the MyCompliance Platform.
Gmail Mobile
- Open the suspected phish email.
- Select the grey Phish Email Reporter icon from the 'Available add-ons' area:
-
Select Report Email. A confirmation message will appear to advise the email has now been sent to the relevant inbox for review. The reported email will also be moved to the user's Trash folder: