Setting Up a Phishing Simulation Campaign is easy and fast! It’s the perfect way to test your team and identify additional training opportunities by sending them realistic fake phishing emails in an attempt to deceive them into clicking links.
Step-by-step guide to creating a one-time phishing campaign
-
Add our phishing IPs and domains in your allowlist
- Before you test or run the full-fledged phishing simulation our phishing IPs need to be whitelisted in Office 365 and Google Workspace. You can find the list here.
- Domains must be whitelisted if the customer is using Microsoft Defender or other third-party email validation services.
- Once the IPs and domains have been added, click Create Campaign
-
Select a One-Time Phishing campaign
-
Choose a template for your campaign
- You will need to choose a template for your campaign either from our library or you can create your own custom template.
- Choose a template by clicking on the checkbox in the corner of the template & press next to proceed.
Note: If you want to customize a template, each template can be customized by cloning and editing. The following fields can be customized:Template Name (seen for Admin), Display Name (Email Name), Subject (Email Header), Username (Email Sender).
-
Customize the landing page mood
- Once you are done with the template selection, you can customize the landing page mood, text, and video
- Once you are done with the template selection, you can customize the landing page mood, text, and video
-
Select the Recipients
- Select the desired recipients that you want to target for the phishing simulation. You can choose all users, specific departments or specific users.
-
Note:
- You should add users in users section, before creating the phishing simulation.
- Disabled users will not get phishing simulation emails
- The unregistered users will not get phishing simulation emails unless the admin sends us a request to change the logic for future campaigns.
-
Schedule the Phishing simulation delivery
-
Final check and then click Start Campaign
-
Please double-check the selected options before you click Start Campaign
-
Any questions? Please contact our support specialists at training@coalitioninc.com
Frequently Asked Questions
-
Can I run a Phishing Campaign with my users before I start the Training?
Of course! You will be able to add your users to the campaign without sending them an email invite. -
Why should I run a Phishing Campaign?
Testing your employees this way will help you gauge your risk and response rate as well as identify training opportunities for those who may need it. -
Do users receive a notification when I start a Phishing Campaign?
No, Users only receive an invitation once they got a Training, Phishing Game, Policy, or Monthly Video assigned. -
Why do we recommend setting Entire Period as a Delivery period in a Phishing campaign?
To avoid spreading the news amongst colleagues they have been targeted to be phished.