![main_logo-1.svg]](https://kb.myota.io/hubfs/myota_theme/images/Myota%20Logos/main_logo-1.svg){kind=logo}
If you receive a suspicious email that appears to impersonate someone else, treat it as a phishing attempt and report it immediately.
Where to report it
Send phishing reports to protect@myota.io.
When possible, include the full email headers with your report so that technical details such as the actual sending server, routing path, authentication results, and any anomalies that may not be visible in the message body alone. This information significantly improves the ability to block these types of senders.
Barracuda email protection
Myota uses Barracuda Email Protection. If you receive a suspicious message, use the Report Phishing option in your email client when available. This helps improve Barracuda filtering over time.
You can also review quarantined email in Barracuda here:
https://us.ess.barracudanetworks.com/webui/message-log
Use the Date Presets option to expand the time range and review all quarantined messages.
How to include email headers
Outlook
Open the email, then go to:
File → Properties → Internet headers
Copy the Internet headers section into your report, or forward the original message as an attachment.
What employees should do
When you receive a suspected phishing email:
- Do not respond to the sender
- Do not click links
- Do not share any information
- Block the sender in your email client
- Report the message to protect@myota.io
- Use the Report Phishing option if available
Once reported, the we will review the message to determine whether the same phishing pattern is affecting other users in the organization.
Forwarding the original email, including headers, helps speed up investigation and response.
Training requirement
Phishing awareness training is part of new hire onboarding and yearly review for all employees as required under SOC 2 Type II controls. Employees should complete this training as part of Myota’s security compliance program.