In this guide you will be able to read about what the PhishAlarm is, it's capabilities and how to log in and initiate the Add-in Outlook for your organisation via Microsoft 365 Admin Center.
PhishAlarm Add-in for Microsoft Exchange
PhishAlarm® is a Microsoft Exchange add-in that enables users to quickly and easily report suspicious emails without needing to remember a specific abuse mailbox address or worry about forwarding messages in the correct format (including headers and body).
Once installed, PhishAlarm adds a button to supported email clients. When users click the button, the email is automatically forwarded to a designated address—typically an abuse mailbox or members of your organization’s security or incident response team.
The PhishAlarm Add-in is delivered via a manifest URL and can be fully customized to align with your organization’s branding and needs. You control:
The appearance and behavior of the PhishAlarm button
The notification messages shown to users based on the type of email reported
The content of those messages
The action taken on the reported email (e.g., deletion or relocation to junk)
PhishAlarm also supports advanced routing. Based on your configuration, reported emails can be:
Forwarded to specific addresses for analysis
Automatically categorized and routed to appropriate teams
For example, emails generated by Proofpoint’s Security Education Platform can be sent to designated personnel
Simulated phishing emails can be directed to the Security Awareness team
Genuine threats can be escalated to the Threat Response team
Setting up PhishAlarm in Microsoft
To install the PhishAlarm Add-in, complete the following steps:
Step 1.
Login to your Microsoft 365 Admin Center using an account with global administrator privileges. Using the left hand navigation click Settings (you may need to expand the navigation bar using the three dots) then Integrated apps.
Step 2.
On the integrated Apps page, click on Upload custom app.
Step 3.
On the Upload App to deploy page, change the app type to be Office add-in then provide the link to the manifest file.
Validate the link then follow the remaining steps to deploy. Once deployed, the Phish button can take up to 24 hours to appear in outlook.
If you need help on locating the link for the manifest file, follow the guide here.
Your PhishAlarm Add-in has now been successfully added to your organisations office environment.
Before the PhishAlarm add-in can be used, you must configure four areas:
• Appearance
• End-user notifications and email handling
• Email forwarding
• Safelisted emails
To configure your PhishAlarm follow the guide below: