Phishing attacks continue to pose a serious threat to organisations worldwide, targeting employees and sensitive data alike. In response, Boxphish has launched a new integration with Microsoft Defender, making it faster and simpler for users to report suspicious emails and for organisations to strengthen their email security.
Streamlined reporting across Outlook
With this integration, users can report suspicious emails from desktop, web, or mobile Outlook with a single click. Once reported, the email is automatically removed from the inbox, reducing the risk of accidental interaction and ensuring security teams are notified promptly.
Simulations that educate without disruption
Boxphish simulations are a key part of employee security training, but they do not require full investigation. With the new integration, simulated phishing emails are flagged separately. Users receive immediate, positive feedback for reporting them correctly, while the simulation is logged in reporting dashboards for managers and trainers. This approach encourages good security habits without adding unnecessary work for IT teams.
Benefits for organisations
- Enhances real-time protection.
- Contributes user-reported insights to track phishing trends and campaigns.
- Supports centralised IT monitoring.
- Integrates seamlessly into existing workflows.
- Provides measurable ROI through faster threat detection and response.
Benefits for users
- Simple, intuitive reporting directly from all versions of Outlook.
- Immediate feedback when reporting simulations, reinforcing security awareness.
- Confidence that reported emails are handled efficiently and safely.
- Encouragement of proactive security behaviour through positive reinforcement messages.
Impact
Phishing attacks are constantly evolving, and traditional security awareness programmes alone are not enough. Integrating Boxphish simulations with Microsoft Defender ensures employees are empowered to act quickly, while IT teams have the tools they need to respond effectively. This solution combines education, automation, and real-world security benefits into a single, seamless workflow.
Looking ahead
Boxphish plans to continue enhancing this integration, making it easier for organisations to adopt advanced email security without disrupting existing workflows. The feature is available for all Microsoft customers using Defender, with setup guides and support resources to ensure a smooth rollout.
For organisations seeking to turn employees into the first line of defence against phishing, this integration represents a significant step forward.
What this means for customers
- Existing phish report button is still active, however if you're a current customer using Microsoft, we recommend you switch to the new integration because it provides:
- Seamless, consistent reporting across all Outlook platforms – The new integration ensures users can report phishing emails from desktop, web, and mobile versions of Outlook with a single click, streamlining the process and eliminating inconsistencies found with the old button.
- Improved handling and feedback for simulations – Simulated phishing emails are automatically identified and logged separately, giving users instant positive feedback and avoiding unnecessary investigation by IT teams, which wasn’t possible with the old setup.
- Enhanced security and efficiency through Defender integration – Reported emails are instantly removed from inboxes, alerts are sent directly to security teams, and user reports feed into Microsoft Defender’s analytics. This results in faster threat detection, better visibility, and measurable ROI.
- We've developed a solution that does integrate with any 3rd party phish report button, however these will be assessed on a case-by-case basis so please contact your Customer Success Manager to find out more!
