To exclude a phishing email in ESET Cloud Office Security, it is recommended to Submit a sample to ESET for analysis on potential false positive.
 
 
Submit sample
The sample submission dialog enables you to send a suspicious malware file, spam or phishing to ESET labs for analysis. You can also report False positive malware, spam or phishing. Select a Reason for submitting a sample from the currently available options in the drop-down menu. The currently available options may differ depending on the item you are submitting for analysis. If you see a Block sender option (when submitting spam), you can choose Block sender by email address, domain or IP and select your custom policy that will be modified to handle the sender blocking. If you do not have a custom policy, click Create new policy.
 
An alternative to the Submit sample action is manually reporting FP - Phishing - to report false positive or negative phishing classification, create a new email message to be sent to samples@eset.com with 'phishing email' in the subject line and include the phishing email as an attachment in .eml or .msg format.
 
 
 
However, if you and your customer are 100% sure that it is a legitimate email, follow the below to release/whitelist the email.
 
 
 
 
 
If the above doesn’t work, you can try the below, however I’m not 100% sure if this will evade ESET Phishing rules.
 
Steps to Whitelist Emails or Domains in ECOS:
  1. Log in to your ESET Cloud Office Security portal.
  2. Navigate to Threat Defense → Antispam settings.
  3. Under the Approved senders section, click Add.
  4. Enter the email address or domain you want to whitelist.
  5. Click Save to apply the changes.
 
 
Please be cautious when using these feature as it can potentially bypass legitimate phishing protection.