Skip to main content


Malicious Email Classification

PhishTitan scans emails and file attachments for potential threats and malicious content, which are called Incidents. The emails are classified into categories associated with phishing, which are described below.

Email Classification



Spam refers to unsolicited emails that are sent to a large number of recipients, usually as advertising.


Phishing emails attempt to trick people into revealing personal or confidential information which can then be used illicitly; for example, to steal a recipient's money or identity.


Malware, short for "malicious software", can be a file or a link in an email that is intentionally harmful to a computer, network or server. If a user interacts with the link or file, malware can infect networks and devices and steal, encrypt and delete sensitive data.


Marketing emails encourage recipients to buy a product or service.


Extortion emails seek to obtain something such as money, by using forceful or threatening language.

Malicious URLs

A malicious URL is a link embedded in an email that was created with the purpose of promoting scams, attacks, and frauds. When selected, malicious URLs can download ransomware, or lead to phishing or spearphishing emails.

The emails in these categories are flagged by PhishTitan and can be viewed in the Resolved tab on the Incidents page. Emails reported by users using the TitanHQ for Outlook add-in, appear in the Action Needed tab and require admin attention.