Phishing scams are one of the most common ways for hackers to gain access to your online accounts or to plant malware on your device. By posing as a legitimate or trusted sender, an attacker tries to trick victims into clicking malicious links or downloading attachments. Please read our article about how to prevent phishing attacks to learn more.
If you receive a suspicious email, the most important thing is to NEVER click on links or download attachments. Simply mark the email as spam and report it to our security team.
How to report phishing to ProtonMail staff
ProtonMail encourages users to send suspected phishing emails to the ProtonMail security team. This allows our staff to analyze the email and improve our spam filters, thereby improving the safety of the entire ProtonMail community.
To report phishing in the web app (mail.protonmail.com):
1. Click on the “More” arrow button at the top right side of the phishing email and select “Report phishing” from the dropdown options.
2. A popup window will appear asking permission for ProtonMail to analyze the message and header. Click “Confirm” to send the message to our team.
To report phishing in the mobile app (Android or iOS):
1. With the phishing email open, tap on the “More” button at the top right side of the screen and select “Report phishing” from the dropdown options.
2. A popup window will appear asking permission for ProtonMail to analyze the message and header. Click “Send” to send the message to our team.