At the company I am working for, when an email comes in that is identified as a phishing attempt, or some other attack type email, the security people have the Exchange administrators go out and find the emails and delete them. Sometimes they request a copy of the bad email. This can sometimes be in the tens or hundreds of emails per week and seems like such a waste of time of the Exchange Administrators.
What do other companies do when an identified phishing email enters their environment? Ignore it? Send out a warning? Do nothing? Have the Exchange Admins find the emails and delete them?
Can you either help me here or direct me where to find more information?