Skip to main content

How do I avoid and report phishing emails?


While you can't avoid receiving phishing emails, being aware of common phishing practices can limit your chances of being tricked by a phishing attempt.

Be careful any time you receive an email from someone or from a site asking for personal information. If you get this type of email, do not click on any links or provide personal information until you've confirmed the email originated from a trustworthy and legitimate source.

When you receive an email that looks suspicious, here are a few things to evaluate:

  • Do not trust the display name. Make sure the email address and sender name match.
  • Beware of urgent or threatening language in the subject line.
  • Analyze the salutation. Is it addressing you or someone else?
  • Check for spelling mistakes or poor grammar.
  • Do not click on any links. Hover over them to see where they might go.
  • Do not open any attachments.
  • Do not provide any personal information.
  • Review the signature. Is there a lack of information?
If you receive a suspicious email that looks to be from Procore, do not reply to the email. Instead, send the email to

I think I’ve been tricked by a phishing attempt. What can I do?

If you accidentally entered your Procore username or password into a strange link or provided your login information via email, someone else might be able to log in to your account.

If you are able to log in to your account, secure your account by resetting your password.

Contact to check for suspicious activity on your account.

See Also