The Phish Bowl
Run by the Information Security Office (ISO), collects reports of phishing attacks to create a shared resource. It acts as a live collection of real phishing emails, allowing users to check suspicious emails against known threats. By showing how various scams work, we can stay ahead of phishing attempts rather than just react to them.
Reporting a Phishing Message
If you receive a phishing attempt not listed in our Phish Bowl, use the Report Suspicious button ( 
) in Google Mail OR forward the suspicious email as an attachment to iso-ir@andrew.cmu.edu.
If you clicked on a phishing link or attachment, follow the Procedure for Responding to a Compromised Computer.