Google Associate Google Workspace Administrator Exam - Topic 2 Question 18 Discussion

Actual exam question for Google's Associate Google Workspace Administrator exam

Question #: 18
Topic #: 2

[All Associate Google Workspace Administrator Questions]

You've received multiple reports about a suspicious email from someone who is pretending to be from your organization's human resources department. The email is prompting employees to click a link for a password update. You want to remediate this sender's emails. What should you do?

AUse the security investigation tool to search for users who received the suspicious email, and select Mark message as phishing.

BUse the security investigation tool to action the suspicious email and select Mark message as spam.

CCreate an activity rule to alert administrators to similar emails from that sender.

DNotify all employees and request that they report this email as spam.

Show Suggested Answer

Suggested Answer: A

The security investigation tool allows you to search for and take action on suspicious emails within your organization. Marking the email as phishing helps to flag the email as malicious and prevents further emails from the same sender from being delivered to users' inboxes. This also ensures that the email is properly categorized for review and investigation by your security team.

by Evangelina at Mar 06, 2026, 08:39 PM

Limited Time Offer

25%

1 month ago

I think marking the message as phishing is the right move, but I'm not entirely sure if we should also notify everyone.

upvoted 0 times

...