Phishing scams are one of the most common ways for hackers to gain access to your online accounts or plant malware on your device. By posing as a legitimate or trusted sender, an attacker tries to trick victims into clicking malicious links or downloading attachments. Please read our article about how to prevent phishing attacks to learn more.
If you suspect an email might be a phishing attempt, DO NOT click on links or download attachments. Simply mark the email as spam and report it to our security team.
If our security system detects a phishing attempt, it will display a special banner to warn you about the email’s contents.
How to report phishing to ProtonMail
ProtonMail encourages users to send suspected phishing attempts to the ProtonMail security team. This allows our staff to analyze the email and improve our spam filters, improving the safety of the entire ProtonMail community.
To report phishing in the web app:
1. Click on the arrow button located at the top left of the phishing email. Select Report phishing from the dropdown menu.
2. A popup window will appear asking for permission to allow ProtonMail to analyze the message and header. Click Confirm to send the message to our security team.
To report phishing in our mobile apps (Android or iOS/iPadOS):
1. With the phishing email open, tap the down arrow button at the top of the screen and select Report phishing.