After identifying the scope of the phishing attack using the alert center, you realize that multiple departments are affected. You now need to mitigate the attack and prevent future ones. What is the best first step to take to mitigate the ongoing phishing attack?