Spyware, Viruses, & Security forum

Resolved Question

Where to report phishing emails to organizations?

Lee - I was interested to read your article on reporting 'phishing' emails. Any time I get one, I report it. However the biggest problem I have is finding the appropriate email address. Many are obvious, i.e. abuse@****.com or spoof@******.com, but many others do not make it easy to report the abuse. I am retired and have enough time to chase down the correct email address but I can understand how many others don't report the 'phishing' emails because of the hassle. I would suggest, if at all possible, that each organization use the same format. It would be convenient to have a central clearinghouse for these emails so that they could be reported to one place and then distributed to the appropriate place. This might be a pipe dream, however until that happens maybe we can start a discussion here and as a collaborative group everyone do their part by submitting verified organization email address alias that they themselves have created for people to report/forward suspecting phishing emails or sites? I'll start first by contributing the examples below. Let's all follow the same format as my list here. Please read through the list and do not add if the organization has been mentioned already. I hope everyone can help and make a comprehensive list that everyone can utilize. Thank you all for the help!

PayPal
spoof@paypal.com
https://www.paypal.com/us/webapps/mpp/security/report-problem

Apple
reportphishing@apple.com
https://support.apple.com/en-us/HT204759

Netflix
phishing@netflix.com
https://help.netflix.com/en/node/65674

--Submitted by: William H.

Lee Koo (ADMIN) has chosen the best answer to their question. View answer
Answer This Ask For Clarification
Discussion is locked
You are posting a reply to: Where to report phishing emails to organizations?
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Where to report phishing emails to organizations?
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

All Answers

Best Answer chosen by Lee Koo (ADMIN)

Collapse -
List of org. email addresses to report phishing emails

In reply to: Where to report phishing emails to organizations?

Here is a list of email addresses for organizations to report phishing scams to. A big THANK YOU to all who contributed to this list. If you have additional email address for orgs to report phishing emails that are not already listed here, please provide them and I will add to this list.

AOL - aol_phish@abuse.aol.com
https://help.aol.com/articles/account-management-identifying-suspicious-activity
ADP - abuse@adp.com
Amazon - stop-spoofing@amazon.com
https://www.amazon.com/gp/help/customer/display.html?nodeId=201127830
American Express - spoof@americanexpress.com
Ameritrade - reportphish@tdameritrade.com
Apple - reportphishing@apple.com
https://support.apple.com/en-us/HT204759

Bank of America - abuse@bankofamerica.com
Barclays - internetsecurity@barclays.co.uk

CapitalOne - abuse@capitalone.com
CenturyLink - spam@centurylink.net
https://www.centurylink.com/home/help/internet/security/report-an-email-as-spam-to-centurylink.html
Chase Bank - abuse@chase.com
https://www.chase.com/digital/resources/privacy-security/questions/fraud
Citi Bank - spoof@citicorp.com
Citizens Bank - abuse@citizensbank.com
Comcast or Xfinity - abuse@comcast.net
Cox - spamreport@cox.net
https://www.cox.com/residential/support/reporting-spam-phishing-and-virus-abuse.html

Discover - emailwatch@discover.com
Dropbox - abuse@dropbox.com
https://www.dropbox.com/help/security/unknown-sender

ebay - spoof@ebay.com
https://pages.ebay.com/securitycenter/report_concern.html

Facebook - phish@fb.com
FBI - spam@uce.gov
FedEx - abuse@fedex.com
First Tennessee Bank - phishalerts@firsttennessee.com
First US Bank - fraud_help@usbank.com

Habitat For Habitat for Humanity - reportscam@habitat.org
Home Depot - abuse@homedepot.com
Huntington Bank - idtheft@huntington.com

Illinois University -securitysupport@illinois.edu
ING - valse-email@ing.nl
Intuit - spoof@intuit.com

LinkedIn - abuse@Linkedin.com

Microsoft - phish@office365.microsoft.com

NFCU - phishalert@navyfederal.org

Netflix - phishing@netflix.com
https://help.netflix.com/en/node/65674

PayPal - spoof@paypal.com
https://www.paypal.com/us/webapps/mpp/security/report-problem
PNC Bank - Abuse@pnc.com

Regions Bank - phishing@regions.com

Skype - spoof@skype.net
Spectrum/Charter - phishing@charter.net
SunTrust Bank - emailabuse@suntrust.com
TD Bank - Phishing@TD.com
TD Ameritrade - reportphish@tdameritrade.com
UBA security - security@ubagroup.com
UPS - fraud@ups.com
USAA - abuse@usaa.com
US Postal Inspection Service (USPS) - spam@uspis.gov
Verizon - EmergencyCyberReport@verizon.com
https://www.verizon.com/info/reportphishing/?c=2
Visa - phishing@visa.com

Walgreens - report-fraud@walgreens.com
Wells Fargo - reportphish@wellsfargo.com
Western Union - spoof@westernunion.com
Yahoo - abuse@yahoo.com

***** AUSTRALIA: *****

Australian Tax Office - ReportEmailFraud@ato.gov.au
Commonwealth Bank - hoax@cba.com.au
NAB - spoof@nab.com.au
Westpac - hoax@westpac.com.au
St George Bank - hoax@stgeorge.com.au

***** CANADA:*****

Air Miles - phishing@airmiles.ca
Bank of Montreal - online.fraud@bmo.com
Bell Canada - abuse@bell.ca
CIBC - fraud@cibc.com
Desjardins - phishing@desjardins.com
Government of Canada Spam Reporting Center, CRTC (CRA) - info@antifraudcentre.ca and spam@fightspam.gc.ca
Quebec email - abuse@quebecemail.com
Royal Bank - information.security@rbc.com and phishing@rbc.com
Videotron - abuse@videotron.ca

***** UNITED KINGDOM: *****


Barclays - internetsecurity@barclays.co.uk
Capital One - abuse@capitalone.com
Clydesdale - reportphishing-cb@cbonline.co.uk
eBay - spoof@ebay.co.uk
Egg - spoof@egg.com
Halifax - security@halifax.co.uk
HMRC - phishing@hmrc.gsi.gov.uk
HSBC / First Direct - phishing@hsbc.com
ING - phishing@us.ing.com
Lloyds - emailscams@lloydstsb.co.uk
M & S Money - money@mandsmoney.com
Nationwide - phishing@nationwide.co.uk
Natwest - phishing@natwest.com
Neteller - phishing@neteller.com
RBS - phishing@rbs.co.uk
Sainsbury Finance - onlineinvestigations@sainsburysbank.co.uk
Santander - phishing@santander.co.uk
Smile - ive_seen_a_scam@smile.co.uk
Tesco Finance - phishing@tescobank.com
The Co-Operative - ihaveseenascam@co-operativebank.co.uk
Virgin Money - info@virginmoney.com


***** Email services *****

Google / Gmail
Gmail >> open the message >> next to Reply, click More >> click Report phishing.
https://support.google.com/mail/answer/8253?hl=en

Microsoft / Outlook / Hotmail.com and Live.com
abuse@outlook.com
Outlook >> click the message >> click down arrow next to Junk >> click Phishing on the toolbar.
https://docs.microsoft.com/en-us/office365/securitycompliance/report-junk-email-and-phishing-scams-in-outlook-on-the-web-eop


********** Other reporting sources ***********

U.S. Government - central reporting @ FTC - Federal Trade Commission
spam@uce.gov
FTC.gov/complaint
https://www.consumer.ftc.gov/articles/0003-phishing

Post was last edited on January 8, 2019 12:27 PM PST

Collapse -
Answer
Outlook.com Has Simple Option to Report Phishing

In reply to: Where to report phishing emails to organizations?

Outlook.com is web-based free email. The menu above the user's list of emails in Inbox and JunkMail includes a dropdown arrow next to "Junk". Click the arrow and you can choose "Phishing" (also there's a "Block" option). For those who don't already know, Outlook.com started years ago as Hotmail.com and has been renamed several times since. A long time ago some spammers set up bogus accounts at Hotmail to send out bulk spam, forcing Microsoft to get serious about helping users avoid this. They also successfully prosecuted large scale spammers and hackers both here and abroad. I'm sure other email services also allow users to report phishing, don't they?

Collapse -
Thank you for sharing.

In reply to: Outlook.com Has Simple Option to Report Phishing

This reporting does helps curb Outlook users from receiving these phishing emails. However in addition to this, reporting those phishing emails by forwarding them to the organization will alert them to investigate and pursue those fraudulent sites.

Collapse -
Answer
Completely Agree with You

In reply to: Where to report phishing emails to organizations?

I sometimes think that they hide that address because they get a lot of false positives for phishing ("Are you sure this email was REAL??") and also they really don't want a lot of stuff coming in (one or two emails...). However, this makes it hard for people to want to report stuff. I don't report "junk mail" advertising, especially when they misspell the name of the company, but anything "dangerous" I try to report that. I can see if you have to "Try" 4-6 email addresses or wind up having to go to the web site and click on "support" or "Contact us" that people will be discouraged especially when they rarely get a personal reply of "thanks" (picture you are one of 100K users sending in a report). But, the one thing that will stop phishing attacks? If it never works, they will stop doing it. Phishing is mostly automated so that the bad guys can send out zillions of the emails at a single click. If only 2-3 people fall for the scam, they have made a huge profit and the financial institution will have to recover from all of their consumers.

Great question! I have found that a quick web search on "spoof reporting <site name>" also helps if you don't have a handy list.

Collapse -
Nothing gets fixed with Outlook

In reply to: Completely Agree with You

I have reported hundreds of spoof, scam emails via Block and phishing drop down menu option on Outlook and nothing gets done. The same emails keep coming back over and over again. I don't think anything happens at all to this avenue of reporting fake emails.

Collapse -
I Use Norton

In reply to: Nothing gets fixed with Outlook

Between the SPAM filters on my re mailer (www.pobox.com) and my Norton has spam filters as well, I don't get to see too much SPAM. Phishing emails really should go to the company that alledgedly "sent" the email, like your bank.

Outlook does have spam filtering but I leave it turned off or it would take forever to get through three spam filters. Did you check your junk mail options to see if the feature is set up the way you want?

Collapse -
What users do not notice is...

In reply to: Nothing gets fixed with Outlook

The message "body" remains the same, the address/link is different; you would be able to see this when you temporarily move the message to the junk folder and then from there you can view the message source. You will see how they manage to bounce through 5 to sometimes 12 different servers to get to you. They are getting more complicated in the way they can attack you, at least with the outlook/hotmail you can "hover" you're mouse curser over the message and you can see the address of the sender; if in doubt... do not open the message.

Collapse -
Thunderbird also shows true URLs

In reply to: What users do not notice is...

Thunderbird will also show the "real" urls in the status field upon hovering.

Collapse -
Phishing Will

In reply to: Nothing gets fixed with Outlook

Report PHISHING Outlook.com to: abuse@outlook.com; likewise for Hotmail.com and Live.com; I include an explanation of what I am reporting, the complete header, and the text body.

Example:

PHISHING EMAIL:
The contact point for the phishing listed as the reply-to address in the header is your client:
XXXXXXXXXXXX
This violates your Microsoft Services Agreement, so please terminate this account. Thank you.

Likewise for when the phishing address is in the Text (or attachment if Word, txt, or pdf) body, Sometimes it takes two times, sometimes one, but you will receive a reply within 1-2 days.

it's not the same for spam; they will not close it if it did not originate from MSN (for a spoofed spam email), so I just report those to junk@office365.microsoft.com.

Collapse -
Probably Not

In reply to: Nothing gets fixed with Outlook

But the real place to send phishing email to is the people who the email is "supposedly" from. If it is from YourBank, then send it to YourBank but remember not to forward the email as email. They, if they investigate, will need the original headers. That is, send them an email and than attach the bad phishing mail (as an "object" or as an "attachment". If nothing else, it warns them that they are about to be hit by fraud.Be thankful you caught it. Others may not be so lucky.

Collapse -
Don't send messages to "supposed" mailer

In reply to: Probably Not

A spammer used my email address as the address from which the email was sent. I received close to 3,000 bounced messages before this stopped. Gmail thought my address was a spammer so I could not send to any Gmail addresses from my home. I had to send those messages using my Gmail account. It was three weeks and making contact with Google/Gmail before I was able to send mail to a Gmail address. Hoffman, hope your email address is never used by a spammer as his return address.

Collapse -
Not Exactly the Same Thing

In reply to: Don't send messages to "supposed" mailer

In the case you are talking about where a Spammer uses YOUR email address as the from address, I don't see why you wouldn't respond to the email of the sender. I'd LIKE to know if email is going out with my address as the FROM address so I can analyze the situation and assume that one of my "friends" has malware on his or her computer. But what we are talking about here is NOT spam. It is about phishing which is a whole nuther thing! The "from" is a bank or financial institution and they are trying to get you to click on a link to login to your bank account only the LINK is phony and goes to a hacker's website so you reveal your credentials to them. The real bank (assuming the reply to is even real) wants to know what is going on. If it is a big organization, they can look at the headers (or hire someone) to track down a thief or at least prepare for an onslaught of their customers wanting to know why their money disappeared. If they didn't want to know, they would not have special email addresses for you to attach the suspected fraud email to and notify them. This is NOT spam; it's fraud. And the address to send the bad email to (as an attachment) is NOT the reply-to address of the mail. SPOOF@companyxyz.com, for example.

Collapse -
Outlook.com Has Simple Option to Report Phishing

In reply to: Completely Agree with You

Did not say what the site address was or how to report other than junk or phishing which I thought just went to a pile - I would rather send to site like Paypal or Amazon etc.

Collapse -
Answer
Amazon

In reply to: Where to report phishing emails to organizations?

could use Wal-Marts,

here is Amazon:

Report Suspicious E-mails or Webpages
We take phishing and spoofing attempts on our customers very seriously. If you receive a correspondence that you think may not be from Amazon, please report it to us by sending the e-mail or webpage to stop-spoofing@amazon.com.

To report a phishing or spoofed e-mail or webpage:
Open a new e-mail and attach the e-mail you suspect is fake. For suspicious webpages, simply copy & paste the link into the email body. If you can't send the e-mail as an attachment, you can forward it.
Send the e-mail to stop-spoofing@amazon.com
Note: Sending this suspicious e-mail as an attachment is the best way for us to track it.

Post was last edited on December 26, 2018 8:04 PM PST

Collapse -
Answer
Bank of America

In reply to: Where to report phishing emails to organizations?

Here is Bank of America

To report a suspicious email: please forward it to us at abuse@bankofamerica.com. We will only reply to your message if we require additional information.

To report a suspicious text: Forward it to us immediately at abuse@bankofamerica.com. Include a screen shot or copy of the message and the number of the sender.

Post was last edited on December 26, 2018 8:02 PM PST

Collapse -
Answer
Apple

In reply to: Where to report phishing emails to organizations?

reportphishing@apple.com

Collapse -
Answer
Walgreens

In reply to: Where to report phishing emails to organizations?

report-fraud@walgreens.com

Collapse -
Answer
Bank of America

In reply to: Where to report phishing emails to organizations?

abuse@bankofamerica.com

Collapse -
Answer
Wells Fargo

In reply to: Where to report phishing emails to organizations?

Forward email to:
reportphish@wellsfargo.com

Collapse -
Answer
Chase Bank

In reply to: Where to report phishing emails to organizations?

abuse@chase.com

Collapse -
Answer
This will become unwieldy very quickly

In reply to: Where to report phishing emails to organizations?

Not to be a party-pooper, but a previous reply suggesting that marking the email as spam within the email reader is really the best option. I realize this post is about "phishing" (not spamming), but as phishing emails are reported as spam, the email providers will do a better job of filtering them out.

If you do get a phishing email and have good anti-virus protection installed, I suggest clicking on the link. This will let you know if the browser already recognizes the site as a phishing site and blocks it. And if it doesn't block, at that point, you can use the browser to report the site as a phishing site. This reporting will be much more effective at protecting the community that simply reporting the email to the "real" organization. It goes without saying that, after clicking on a link, do NOT enter any personal information.

Finally, assuming that this "list" of contacts is compiled, who will manage it? How will it be searchable? How will people even know to look here (on a CNET Forum) to find this information?

I wish everyone a SAFE and happy New Year.

Collapse -
I would be careful of that.

In reply to: This will become unwieldy very quickly

Personally, I suggest NEVER clinking on any link in a phishing or spamming email. Even the best anti-virus software can not keep up with the very fast proliferation of bogus web sites popping up all the time. Anti-virus software developers depend on users (as well as AI) to identify malicious sites. If you happen to be one of the first few users to click on a link that norton or anyone else has not yet identified as in a relatively new site your screwed. Malware is installed and who knows what you need to do next. Let the artificial intelligence work- DO NOT CLICK LINKS.

Collapse -
Phishing sites want you to login, so they won't infect you

In reply to: I would be careful of that.

You are correct to avoid links that lead to downloads, because, as you said, there is the possibility of contracting a zero-day infection which has not yet been identified. But this article is about phishing, where the goal of the attacker is to get you to login somewhere to reveal your username and password. Phishing sites are designed to look like legitimate sites, so they typically will NOT infect your computer. They just want your personal information.

Collapse -
At Least Here in the U.S.

In reply to: Phishing sites want you to login, so they won't infect you

Phishing EMAILS (NOT websites) are defined as emails telling you that you need to login to your bank account or other important site, and they all supply a LINK that is NOT a download, but a link to their malignant login page. It looks like your bank's login page, but it is NOT. It belongs to the bad guys and, when you type in your userid and password, it captures that information. That is, the EMAIL is phishing, not the site itself because the email contains bad links and a sense of urgency. At least that was my understanding while working on the inter-departmental security teams at a major county government (and before as well).

Collapse -
What if it's ransomware?

In reply to: This will become unwieldy very quickly

What if you click on a link that your protection doesn't block and it happens to be ransomware?

Collapse -
Remember the Rule

In reply to: What if it's ransomware?

NEVER click on links in an email. If it is your bank, for example, go login to the bank by your browser. Links can be phony.

Collapse -
Ransomware requires download and your PERMISSION to execute

In reply to: What if it's ransomware?

As confirmed by Hforman, phishing sites do not intend to harm your computer. The goal of a phishing site is to fool you into giving up your login credentials (username and password). Ransomware (and all other viruses) are hidden inside FILES that you are fooled into downloading. Either they are sent as attachments to emails, or they masquerade as "drivers" (e.g. The xxxxx Video player requires a driver - click here to install). Even then, those files will ask for your PERMISSION to run (e.g. "xxxxx Program wants to change your computer settings" or something to that effect). If you give your permission, then you can get infected if the file contains malware.

Since this discussion is about PHISHING, I am suggesting ways to safely "probe" websites to see if they have already been reported as phishing sites; and if not, letting you know that many browsers will allow you to report the phishing site while you are on the site.

Collapse -
Answer
Chase, EBay, Skype, and USPS

In reply to: Where to report phishing emails to organizations?

Chase:
abuse@chase.com

Ebay:
spoof@ebay.com

Skype:
spoof@skype.net

US Postal Inspection Service (USPS):
spam@uspis.gov

Collapse -
Answer
Report Phishing, SPAM or fraudulent emails to FedEx

In reply to: Where to report phishing emails to organizations?

Forward the bogus email to

abuse@fedex.com

Collapse -
Answer
More phishing report addresses

In reply to: Where to report phishing emails to organizations?

Citi Bank:
spoof@citicorp.com
And to get the attention of law enforcement authorities:
spam@uce.gov
reportphishing@awpg.org (the Anti-Phishing Working Group)
Additional guidance on reporting: wikihow.com/Report-Phishing

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

SMART HOME

This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.