Update security-incidents.md (18F#3959)

* Update security-incidents.md Fixed the deadlinks found in the "Reporting Phishing" section to the actual inSite page and the video that provides directions on how to use Cofense. Also added a line about how the email should be marked as spam/phishing after reporting it to Cofense because you won't be able to report it to Cofense if it is already in your spam folder. * Update pages/general-information-and-resources/tech-policies/security-incidents.md getting rid of extra spacing Co-authored-by: John Skiles Skinner <[email protected]> --------- Co-authored-by: John Skiles Skinner <[email protected]> Co-authored-by: John Jediny <[email protected]>
zjrgov · Sep 3, 2024 · 54e59d2 · 54e59d2
1 parent fc28a9e
commit 54e59d2
Showing 1 changed file with 5 additions and 5 deletions.
diff --git a/pages/general-information-and-resources/tech-policies/security-incidents.md b/pages/general-information-and-resources/tech-policies/security-incidents.md
@@ -49,18 +49,18 @@ smoothly and efficiently.
 For questions about GSA’s Incident Response Program, contact the GSA Incident
 Response (IR) Team at [[email protected]](mailto:[email protected]).
 
-## Reporting [Phishing](https://insite.gsa.gov/topics/information-technology/do-it-yourself-self-help/google-g-suite-apps/email-with-gmail/phishing-emails-and-scams?term=phishing)
+## Reporting [Phishing](https://insite.gsa.gov/employee-resources/information-technology/it-security-and-privacy/it-security/report-it-security-incidents-suspicious-activity/phishing-emails-scams?term=cofense)
 
 If you receive a suspicious email, follow these steps:
 
-1. Do not click any links in the email. Do not delete it yet. You may mark it as
-   spam.
+1. Do not click any links in the email. Do not delete it yet.
 1. Follow the
-   ["To report a suspicious email" directions](https://insite.gsa.gov/topics/information-technology/do-it-yourself-self-help/google-g-suite-apps/email-with-gmail/phishing-emails-and-scams#Report%20suspicious%20emails)
+   ["Cofense Report" video](https://vimeo.com/gsavisualcommunications/review/810968282/6c567fac26)
    on the
-   [Phishing Emails and Scams InSite page](https://insite.gsa.gov/topics/information-technology/do-it-yourself-self-help/google-g-suite-apps/email-with-gmail/phishing-emails-and-scams#Report%20suspicious%20emails).
+   [Phishing Emails and Scams InSite page](https://insite.gsa.gov/employee-resources/information-technology/it-security-and-privacy/it-security/report-it-security-incidents-suspicious-activity/phishing-emails-scams?term=cofense).
 1. This should instruct you in how to use the Cofense tool (the little fish icon
    that should be on the right) to report the phish.
+1. You may mark it as spam/phishing _after_ reporting it to Cofense. Cofense doesn't let you report the email if it is already in your spam folder, so be sure to do this step after. You can do this by clicking the 3 vertical dots to the top right of the email.
 1. GSA IT will triage and let you know what they need you to do, if anything.
 
 If you also clicked on a link in a phishing email, follow these steps to report