What to do if you think you’ve been phished.
If you think you have been phished, you should take the following steps:
- Do not click on any links in the email or provide any personal information.
- Forward the email to the Anti-Phishing Working Group at email@example.com.
- Delete the email from your inbox.
- If you have already clicked on a link in the email or provided personal information, you should change your passwords immediately and report the incident to the proper authorities, such as your bank or credit card company.
How to report phishing emails and help stop them from spreading
If you receive a phishing email, report it to the company, organization, or individual that is impersonated in the email. You can also report the phishing email to the Federal Trade Commission at firstname.lastname@example.org.
If you click on a link in a phishing email, or enter information on a phishing website, report the phishing attack to the website owner. You can also report the phishing attack to the Internet Crime Complaint Center (IC3).
If you believe you’ve been a victim of a phishing attack, file a complaint with the IC3.