Users have requested a portal login so that they can track their individual progress. Due to the increase of Phish attempts during the COVID-19 crisis, I was instructed to enroll users into Phish training. I enrolled all of them into 7 modules. The email reminders were helpful but a lot of them weren't sure which modules they had completed. They asked if there was a portal to see their own progress.

Hello Team,

We have customer here requesting to have feature for Sophos Phish Threat to run a phishing campaign inside a calendar month and run it on odd numberd months.
Specifically customer requesting to run a phishing campaign that lasts 3 weeks and run it every other month. For your assistance please. Thank You

This is sort of targeted to my organization in particular but it would be nice to adjust the subject line in the Sophos email alerts. The subject is to long to go through our helpdesk ticketing system , which is limited to 100 characters, I imagine other ticketing systems could have a similar issue.

From a client David Silcock | IT Support Officer
Forestry Corporation of NSW :
.
I think the training modules are great for end users, however from an admin side and an Australian/NZ customer the phishing templates and customisation could be enhanced as they mainly tailor to a US audience I would either like more to be added or for a html editor for the templates similar to GoPhish and the ability to upload/create and save my own templates that can be more relevant to my business.

From a client David Silcock | IT Support Officer
Forestry Corporation of NSW :
.
I think the training modules are great for end users, however from an admin side and an Australian/NZ customer the phishing templates and customisation could be enhanced as they mainly tailor to a US audience I would either like more to be added or for a html editor for the templates similar to GoPhish and the ability to upload/create and save my own templates that can be more relevant to my business.

Ability to send Phisigning emails from our registred email domains.
We just got this product and I have to say it is pretty useless without this feature. Our users see right past the bogus email domains, this was never an issue when we were using knowb4 as we could spoof our email domain to make the phishing look real. I don't understand why I can send training emails from my company's email domain but not the actual phishing ones. If ransomware actaully gets in its from targeted emails that spoof the domain not batch sent 2 bit ones.

Give the employer "points" for using the Outlook plugin on not-Sophos-Phish-Threats attempts.
As for now the plugin only register when an employer submits a Sophos PT-attach. But our users reports many non-Sophos -real- attempts!
Would be great if we could see some statistics, a Top 10 best, etc, which we could use to have the internal dialogue of awareness.

The results in the training campaign can be filtered by "Sent Email", "Opened Email", "Started Training", and "Finished Training". There is no option for "Did Not Finish Training". I would like to generate a report showing all users that have not completed the training. In my organization, if users don't complete the training we would like to target them with more aggressive training.

The results in the training campaign can be filtered by "Sent Email", "Opened Email", "Started Training", and "Finished Training". There is no option for "Did Not Finish Training". I would like to generate a report showing all users that have not completed the training. In my organization, if users don't complete the training we would like to target them with more aggressive training.

Message stating my phone is phishing how do I get rid of the phishing

been able to add multiple training materiel when creating a new campaign

User didn't click the link. Forwarded to IT, where by accident the IT person clicked the link when replying. User is now reported as having opened the link and is expected to go through training. Should have the the ability to remove such a mistake either through the console or through support.

We have an overwhelming request from the managers (non-technical) who are responsible for re-training the end users when they make a mistake and click on a phish threat test email and they really want the alerts to come in realtime when an enduser does click a link, open an attachment or enters their credentials. This is because they want to get in touch with the employee right away to help them understand, more so than just the training material.

Make outlook add-in compatible with Exchange 2016.

Have the ability to edit email sent to client when they click on the link in the attack email. Current email is condescending to some clients and they won't use the attacks because of it.

Hi, would like an Edit feature for Series in Phish Threat .

When testing the setup of a campaign with the endcustomer we would like to be able to send a test email to the it-manager in order to see if the mails are caught in the spamfilter, etc. To do this we have to create a new campaign for each needed test until everything works. Would be great if we could send a test email to the enduser.

As as admin, I would like to leverage the report message button to assist users in identifying phishing emails that are not caught by our filters. I would users to use the button on suspicious emails they suspect to be phishing which would then forward a copy of the email (with the headers) to the infosec team and delete the email from the user's inbox. This will give organizations the ability to notify all staff of malicious emails and make policy changes to prevent future phishing attempts.

Many of my colleagues get confused when they complete a training because they only have the options of retaking the quiz or going back to the beginning of the training after they pass. The confusion could be cleared up by adding a button at the end of trainings that says "Finish" or "End Training" with an accompanying explanation that prompts you to click the button.