A phishing email is an attempt to get private information such as your account number, username, password, phone number or financial information. This is often done by including links or malicious HTML attachments. Once you click the link or open the attachment, you will generally be presented with a web page that looks very similar to a login page or form from a legitimate organization. This can be a fake Microsoft 365 login page or a fake password reset page from Paypal for example. If you provide your personal information, criminals may gain access to your company’s network account or to your private social media or bank account. If you suspect that you have received such an email or opened a link that looks suspicious, don’t click anything in the email or do not enter any personal information. Instead, report it so that your security team can take action to protect you and your team.