Hmm, I'm not sure about F. Wouldn't that just be internal information for the security team? I'd focus on the external indicators that could help identify the phishing source.
Ha! I bet the security team would also want to know the 'state of the phishing email' - you know, like if it was opened, clicked, or forwarded. That's a good one, C!
A, D, and E for sure. I mean, that's the basic info you'd want to capture, right? The URLs, IPs, and file hashes could be clues to the source of the phishing attack.
Art
6 months agoLorrine
6 months agoYolande
5 months agoAmber
5 months agoCarissa
6 months agoLucia
6 months agoDevora
6 months agoJamika
7 months agoBrittney
6 months agoErick
6 months agoWilda
6 months agoLatanya
7 months agoAnastacia
7 months agoSolange
6 months agoLigia
7 months agoLeontine
7 months ago