Re: Incident Handling for phishing attemts

[anon () anon com]

I usually file an incident report and send it to possible phishing targets in the company, hopefully preventing further 
attack. Also, using an app like Wireshark and/or Paros you may be able to find out where the information in really 
going by filling out the form in a virtual machine (with phony info, of course), as well as scanning the pages for 
malicious content.