Jump to:navigation, search
Wiki






























De.png
En.png
Fr.png






Simulation of a phishing attack
Last adaption: 10.2022
New:
  • Note on deactivating existing simulations before new ones can be started
notempty
This article refers to a Resellerpreview
Access: manager.awareness.securepoint.cloud Choose tenantSosafe-Home.svg Start page Sosafe-dropdown.svg Base Data Sosafe-check-badge.svg


Simulation

To activation Activates a scheduled phishing simulation AWP Simulation Übersicht-en.png
Plan new simulation If necessary, deletes an existing simulation, creates a new simulation and starts the wizard with the Scheduling AWP Simaltion neu-en.png

  • Existing simulations must be deactivated before new ones can be started.
  • Edit simulation Opens an existing simulation for editing

    Schedule

    Start date
    22.11.2021
    Start of the campaign. From this, the following are automatically calculated:
    • End date
    • Initial phase: 3 mails within 2 weeks
      and
    • Follow-up phase 9 more emails
    AWP Simulation Zeitplan-en.png
    Next Saves the information and calls the next setup step

    Industry package

    AWP Simulation Branchenpaket-Bsp.png
    Selection of an industry package.
    The content of the phishing emails as well as the senders used are tailored to the respective industries.
    AWP Simulation Branchenpaket-en.png
    Offered industry packages
    Next Saves the information and calls the next setup step

    Email Templates

    12 emails can be selected to be sent to users AWP Simulation E-Mail-Vorlagen-en.png
    Sosafe chain.png Displays the link to the learning page for this phishing mail. The link can be copied to the clipboard with other elements (subject, sender, etc.) using the  Copy to clipboard button.
    Sends a test mail. The recipient must be entered as a user in the master data. AWP Simulation Testmail-en.png
    Next Saves the information and calls the next setup step

    Whitelisting

    List of all addresses used:
    • IP addresses
    • envelope sender addresses
      Addresses should at best be copied & pasted, as e.g. "norepIy" uses the capital letter I of i - no lower case L: norepIy
    • domains used in the phishing links
    • domains used in the e-learning platform

    These addresses must be whitelisted on the mail server and in the firewall so that the simulated phishing emails can reach the users and they are able to access the e-learning platform.

    AWP Simulation Whitelisting-en.png

    Summary

    It should be checked here once again before activation whether all entries are correct.
    All settings can still be changed.
    AWP Simualtion Zusammenfassung-en.png
    Summary of the phishing simulation
    Complete Completes the planning