Hmm, I'm not sure about F. Wouldn't that just be internal information for the security team? I'd focus on the external indicators that could help identify the phishing source.
Ha! I bet the security team would also want to know the 'state of the phishing email' - you know, like if it was opened, clicked, or forwarded. That's a good one, C!
A, D, and E for sure. I mean, that's the basic info you'd want to capture, right? The URLs, IPs, and file hashes could be clues to the source of the phishing attack.
Art
6 months agoLorrine
6 months agoYolande
5 months agoAmber
5 months agoCarissa
5 months agoLucia
6 months agoDevora
6 months agoJamika
6 months agoBrittney
5 months agoErick
5 months agoWilda
5 months agoLatanya
6 months agoAnastacia
6 months agoSolange
5 months agoLigia
6 months agoLeontine
6 months ago