Skip to main content

How does phishing simulation and training work?

Our phishing simulations enable you to assess the vulnerability of your employees to this type of attack.

After selecting a phishing exercise or campaign, your staff will receive these phishing emails in their inbox. Such emails are actually fake and completely harmless.

After two days, you will see the emails sent and who clicked on them. After the campaign, your employees will be able to complete our phishing training, which will help them detect and prevent this type of attack.

Note:

  • If you are using Microsoft Defender for Office in your mail environment and have experienced false clicks, it is because Defender for Office has link processing rules that are causing this. You can set up rules that allow you to bypass safe links for our phishing test emails.
  • However, if you have a mail filter in front of your mail server, we recommend you whitelist our email headers. To test these changes, select the scenario and press the Check Receipt button or set up a phishing campaign for a small test group that includes you.