PhishNotify: Anti-phishing software and protection solution
Make threat reporting effortless with Infosec IQ’s anti-phishing solution. PhishNotify adds a one-click reporting button directly to Outlook and Gmail, enabling your workforce to flag potential threats — while your security team gains instant visibility to act fast.
Streamline the incident response process
Go from a suspicious email to a resolved threat in just a few clicks. Learn how PhishNotify empowers employees to spot phishing attempts with confidence.
How PhishNotify works
1. Set up quickly and easily
Getting started with PhishNotify is straightforward. Select the tool you want to integrate with, adjust settings, configure it within your security tool and you’re ready to go. This phishing protection solution is built to fit into your existing workflow.
2. Employees report threats with one click
PhishNotify adds an email phishing protection button directly to Outlook and Gmail. When an employee spots a suspicious email, they can report it instantly — no extra steps, no switching tools. Reported emails are then moved to quarantine to identify threats.
3. PhishNotify provides immediate feedback
The moment an employee reports an email, they receive instant feedback confirming whether it was a simulated phish or a real potential threat. This positive reinforcement builds the reporting habit over time.
4. Route threats to your security team automatically
Reported emails are sent directly to your security systems, simplifying the incident response process. PhishNotify integrates with your existing security tools, including Microsoft Defender, so your team can spend more time responding to threats.
Streamlined email integration
PhishNotify is designed to work with the tools your team already uses — no overhaul required. This anti-phishing tool installs directly into Outlook or Gmail to fit your employees’ existing inboxes.
When an employee reports a suspicious email, PhishNotify automatically forwards it to any email address you designate. It arrives as a .txt or .eml attachment so your security team can safely analyze all employee-reported emails in the tool of their choice.
Reported emails remain in your quarantine with the original sending information, email contents and attachments for 14 days so your team can pinpoint attacks and identify trends.
One-click email reporting
Encourage employees to play an active role in your organization's security by making threat reporting as simple as possible. When an employee uses the PhishNotify button, the email is automatically marked as spam or moved to the trash, and they instantly know whether it was a simulated attack or a real threat.
PhishNotify reporting gives your organization:
- Immediate employee feedback: Reinforce positive security behaviors the moment an employee reports a suspicious email.
- Full reporting visibility: Track which employees are reporting threats and monitor your organization's overall phishing report rate.
- Reliable phish rate data: Ensure simulated phishing emails are reported back to Infosec IQ, keeping your campaign statistics accurate.
- Faster incident response: Get reported threats to your security team quickly so they can act before damage is done.
Award-winning security awareness training you can trust
Frequently asked questions
How does PhishNotify work?
PhishNotify is an anti-phishing tool that adds a report button directly to your employees' Outlook or Gmail inbox. When an employee spots a suspicious email, they click the button to report it. The reported email is safely sent to your security team for review, and the employee receives immediate feedback confirming whether it was a simulated phish or a real potential threat. Admins can track all reporting activity in Infosec IQ to monitor phish rates and measure the effectiveness of your phishing simulation campaigns.
Does this plugin integrate with our current email client?
Yes. PhishNotify is available as an add-on for both Microsoft Outlook and Google Workspace (Gmail), making it a flexible email phishing protection solution for most organizations. It also integrates with leading security platforms, including Microsoft Defender, routing reported emails directly into your existing incident response workflows. Custom integrations are available for teams using other security tools.
What happens after an employee clicks the report phishing button?
Once an employee reports an email, PhishNotify immediately confirms whether the message was a PhishSim simulation or a non-simulated potential threat. The reported email is stored in your quarantine for up to 14 days, where your security team can preview it, download it as an .eml file or delete it as needed. Admins can also set up automated email summaries — sent daily, weekly, or monthly — to keep the right people informed of reported activity.