User didn't click the link. Forwarded to IT, where by accident the IT person clicked the link when replying. User is now reported as having opened the link and is expected to go through training. Should have the the ability to remove such a mistake either through the console or through support.

We have an overwhelming request from the managers (non-technical) who are responsible for re-training the end users when they make a mistake and click on a phish threat test email and they really want the alerts to come in realtime when an enduser does click a link, open an attachment or enters their credentials. This is because they want to get in touch with the employee right away to help them understand, more so than just the training material.

Make outlook add-in compatible with Exchange 2016.

Have the ability to edit email sent to client when they click on the link in the attack email. Current email is condescending to some clients and they won't use the attacks because of it.

Hi, would like an Edit feature for Series in Phish Threat .

When testing the setup of a campaign with the endcustomer we would like to be able to send a test email to the it-manager in order to see if the mails are caught in the spamfilter, etc. To do this we have to create a new campaign for each needed test until everything works. Would be great if we could send a test email to the enduser.

As as admin, I would like to leverage the report message button to assist users in identifying phishing emails that are not caught by our filters. I would users to use the button on suspicious emails they suspect to be phishing which would then forward a copy of the email (with the headers) to the infosec team and delete the email from the user's inbox. This will give organizations the ability to notify all staff of malicious emails and make policy changes to prevent future phishing attempts.

Many of my colleagues get confused when they complete a training because they only have the options of retaking the quiz or going back to the beginning of the training after they pass. The confusion could be cleared up by adding a button at the end of trainings that says "Finish" or "End Training" with an accompanying explanation that prompts you to click the button.

Is there a way for us to know what the training URLs are for given users, so we could send it out in our own reminder e-mails

Is there any way we could accomplish sending our users reminder e-mails to take training, if they click a link during a Sophos phishing campaign, but have it not be a daily reminder e-mail - say, just one or two reminders? An option for how many reminders and how often those reminders get sent out.

Ability to delete custom template of phishing attack

It would be helpful for end users to be able to view training videos after a campaign has ended. We would like to post links to training videos for users to refresh their skills.

when using one of the templates the wording needs adjusting for our culture and region , there is no option to rename the customised template to a custom version of the original, so it shows as a broken link if this feature were available it would help get better responses.

Provide a list of all Reported Emails from Sophos Central and add the function to take Action from the portal. Actions would be block domain or email address from within the Message and see who else received the email. Make it as simple for our Admins to manage the entire suite from the portal.

It would be nice if the email/page editor allowed editing the raw html, as sometimes the wysiwyg editor is rather difficult to work with, especially when editing existing layouts.

I work in an organization that is predominantly Mac based. Most everyone uses Mac mail as their email client.

I'd love for them to have the ability to "report" threats, BUT... 1 - I understand the restrictions with Mac mail and 2 - there's no way our end users will switch to Outlook.

That being said, it would be awesome if a Thunderbird plugin could be made accessible. I think between the phish reporting capabilities and some of the other features that Thunderbird brings, a strong argument could be made to switch.

Bring back Amazon Gift Card and DocuSign Phishing Campaigns. They were part of Phish V1. It appears that they have been removed from Phish V2.

Some users have reported that they don't see the quiz link at the end of a training. Is it possible to have the quiz present as a popup or make it more easily viewable or accessible for users with varying monitor resolutions?

In Sophos phishing educational content, please don't always cast the phishing victim as a clueless female and the manager and IT folks who come to her rescue as male. It's 2019, people! There are plenty of savvy women in business environments and women in IT roles. The gender stereotype is woefully out of date. Thanks