Creating campaigns

Depending on your company's security policies, certain content from external sources (for example, images) can be hidden in emails. To test user skills through simulated phishing campaigns, you must enable the display of content in emails. Learn more about how to enable the display of content from third-party sources in Microsoft Outlook.

How to create phishing campaigns:

1. In the application web interface, select the Phishing simulator section → Campaigns.

   The page will display a table with previously created campaigns, as well as information on current or completed phishing campaigns.

2. Click the Create campaign button.

   The campaign creation wizard will open, and at each step you'll need to sequentially set the parameters of the phishing campaign.

3. At the Scenario selection step, select where users who are phishing will be redirected:
   • Standard scenario — users are shown a page informing them that they clicked a phishing link, including advice on how to avoid phishing in the future.
   • 404 – Page Not Found — users are shown a 404 error page and won't know they were phished.
4. Click Continue to proceed to the next step of the wizard.
5. In the Email templates step, specify the name of the phishing campaign and select the email templates it will use:
   • Phishing Campaign Name — enter the name of the phishing campaign in this window.
   • Select Template — use this button to add phishing email templates to your campaign.

     Clicking this button displays the Template Selection window, where you can select from the available phishing email templates:

     1. At the top of the window, specify the type of template you want to add:
        • Default if you want to add a ready-made email template.
        • Custom if you want to add a previously created custom template.
     2. Using the Email Language button, select the language of the template for the campaign.

        If you want to add emails with the same template to a campaign but in different languages, add them multiple times, each time selecting the language using the Email language button.

     3. Find the templates you need and check the boxes next to them. You can use filters to search for templates.

        You can view the email by clicking the template icon.

     4. Click Select .

        The selected templates will be added to the Selected emails table.

     Learn more about the table of phishing email templates

     Available table columns:

     • Title — names of phishing email templates.
     • Type of attack — type of phishing attack:
       • Link — users are prompted to follow a phishing link.
       • Attachment — users are prompted to open files in the phishing email.
       • QR code — users are asked to follow the link from the QR code in the phishing email.
     • Failure Rate — the percentage of successful phishing attacks for each phishing template.
     • Subject — the subject of the phishing emails.
     • Category — the category of the phishing emails.
     • Sender name — from who phishing emails will be sent.
     • Sender Address — what address will be listed as the sender of phishing emails.
     • Available languages — a list of language codes that the phishing email template is available in.

     When you click the icon at the top of the table, the Table Options window. Here you can select which columns will be displayed in the table, and also change the order in which columns are displayed by dragging them by the icon. You can use the Default Columns button to restore the table to its original appearance.

6. Click Save and Continue to proceed to the next step of the wizard.
7. In the Participants step, select the users who will participate in the phishing campaign.

   When you click the Select Participants button, the Select Participants window is displayed to select users. You can use filters to search users.

   You can only select users who meet at least one of the following terms:

   • The user accepted the terms of the User Agreement by clicking the link in the platform invitation.

     The invite was automatically sent to the users after training started in their groups. You can resend invites manually.

   • The user's email address is a verified company domain.

     In this case you don't need to obtain user consent.

8. Click Save and Continue to proceed to the next step of the wizard.
9. On the Schedule step, specify the parameters for sending and tracking user responses:
   • In the Schedule section, select one of the following distribution modes:
     • Send all emails now.

       Emails based on all templates added to the campaign will be sent to users simultaneously immediately after the campaign is created.

     • Send all emails at the same time.

       Emails based on all templates added to the campaign will be sent to users simultaneously at the stated time.

     • Send emails randomly.

       Emails based on the templates added to the campaign will be sent at random intervals during a specified time period.

     If in the previous step you selected the Send all emails at the same time or Send emails randomly option, set the schedule in the first part of the screen.

   • In the Data collection period drop-down list, specify how many days after the last email was sent to users should be considered the end of the campaign.

     Phishing campaign results will only be available after the data collection period has ended. Until then, you will only be able to see the number of clicks on links from emails.

10. Click the Launch campaign button.

The phishing campaign is now created. The page with information about the campaign will be shown in the Statistics tab.

To the top