Quite often there are times where there is an email delivery issue for campaigns and the only way to resend these failed/bounced emails would be to re-create a campaign from scratch to the same users. Providing the option to resend a campaign (once per 24 hours etc to avoid abuse) would be helpful for these scenarios.

Similar to SCORM objects, send back a Grade Book item. This would be beneficial as microcredentials (badges/awards) could be used to automatically provide a certificate to the user. Utilizing this method, active Employees could be targeted for a campaign, or other specific groups as required.

Manage Templates
Have a possibility to delete, rename, ...

When a campaign has been [accidentally] ended by an administrator, afford the opportunity to restart the campaign where it left off within a grace period.

The link that we receive in the email to do the automated training we setup looks like a phishing threat. Just the domain of the link looks suspicious. "https://sophos-phish-threat.go-vip.co/training" Maybe an option to change the domain or have one that looks less suspicious so our Users don't think the training they are supposed to do looks like a phishing threat, right after we tested them for phishing.

Currently it's not possible to save a campaign as a draft. ability to draft a campaign in Phish Threat is crucial because if session expires, or you just need to gather more info or... and return to a partially completed campaign, then everything disappears and you need to start from scratch.

Synchro AD sophos could sync field description

Have a possibility to launch a random campagn

Currently you can only go back 1 year in the reporting tool. You can't parse data from older campaigns. Please disable this restriction.

Allow the user to add information when reporting the email, e.g. I did click on the link or other information that may be useful to the support team.

In phish threat under the campaign overview it shows "device breakdown". This displays either computers or mobile devices with respective statistics.

I would like to be able to extract this information from Phish threat so we can use this data in our analysis. It's vital, especially for mobile devices.

I would like the ability to reuse campaigns or at least create custom templates for training and campaigns.

Hi,

Can we get a MFA feature on your reflexion portal. Even if just for partner accounts. The potential of damage if a partner account got in to the wrong hands is very high. MFA support would resolve this.

Andre

If we have activity on Sophos Portal It should be interesting not to be logged out.

When we're in the middle of planning a campaing I've been kicked out lot of times and we've lost the work

Thanks

The .docx attachment sent by a "Download attack" should be also detected by applications like LibreOffice or OpenOffice which are able to open those kind of documents.

If we open the attachment with LibreOffice we'll never know if final user has open or not the document.

There is life beyond Microsoft Office

• It should be possible to delete previous featured custom attacks.


• When we pick a previous featured attack, we have not a "preview" mode. Hard to find if we've many.


• Sometimes custom attack doesn't keep every modified values so It takes us to fall in error like to send a wrong sender email var.


• Sometimes custom attacks doesn't give us the oportunitty to "UPDATE" a previous one and duplicates the same.

Seems to need deep debugging

Possibility to use a USB stick in the campaigns.

Attachment should be used to check which users have opened a document stored on a USB stick.

It would be very helpful to determine what happens to lost USB flash drives in the building.

Need to a way to keep the users updated rather than having to manually add and remove people from Phish Threat.

Once a user has completed a quiz successfully, it is not clear which steps they have to take next. It only says that the quiz has been passed. It would be useful if there was a Textbox that says: Please close the window.

When you create a new threat, as you pick the threat and the schooling vedio afterowrds you get to a page where you can edit it, and there is a drop down window for domains, so you can pick from pre chosen domains like it-supportdesk.com etc.
Why cant i add my own, if I want to send them something and pretend its coming from our IT department, they would expect it to be like all the other e mails, can you make it where we can add our own?