Phish Threat

Suggest, discuss, and vote on new ideas for Sophos Phish Threat. Phishing attack simulation and training for your end users.

Phish Threat

Suggest, discuss, and vote on new ideas for Sophos Phish Threat. Phishing attack simulation and training for your end users.

  1. Sophos Phish Threat should globally add the Domain list without company manual data entry actions

    Sophos should globally add the Domain list without company manually entering each domain name entry. Sophos should automatically update and push domain list.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Resume Training/Save Progress feature request

    Having the ability to save progress as a user engages in a training campaign with multiple modules would be a welcomed feature. Saving progress, including completed modules, quizzes and scores would be beneficial for most of my users. In the meantime, adding a disclaimer to the "resume training later" link that progress is not saved might help. Thank you.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add ability to modify campaign data during or after a campaign has launched

    PhishThreat (PT) data cannot be modified during or after a campaign goes live. Since PT currently uses an independent user database (not tied to cloud AV - which is tied to Active Directory (AD)) user details can be incorrectly and permanently captured.

    Scenario1: A staff member is listed in a specific department in AD. The user list is exported from AD and imported to PT prior to the launch of a campaign. The campaign begins and the user is promoted/ transferred to a different department or the original department was wrong, the change is made in AD, and the export/…

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Copy Duplicate of Campaign Material

    Duplicate or copy of campaign material.
    Suggesting my Idea to Phish Threat in the future to have retrieval or saved a copy of campaign material before and after the campaign was published and have a compatibility html codes for outlook 2016 email format.
    As of now were just copying html codes to create new campaign and needed to be checked for the exact format and view for outlook 2016 versions.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Archive Users

    I would like to be able to archive users, but keep their data within the system, so I can keep searching and having accurate reports based on who a campaign was sent to, even if the user is no longer active.
    (I guess I am operating under the assumption that when I "replace" a user file, all record of users that are removed goes away with them - is that correct?)

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. attachment campaigns

    Ability to choose at which step users will be automatically enrolled in the training. A user opening the email should already be enrolled so It would be great if we can choose the training enrollment trigger.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Adopt a Pet Campaign Enhancement

    If I use the Adopt a Pet campaign, you should allow the user to see the actual video of the cute puppies after they take the training.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Automated Reporting / Scheduled Reports

    It would be great to have a way to set up automated/scheduled reports to be emailed.

    This feature would allow us to easily provide reports to our management team and compliance officers on a consistent schedule without having to tie up an administrators time pulling reports, exporting them and compiling them into email.

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Resume Training Later

    For the Modules that cannot save progress midway through, can a disclaimer please be added, or the wording changed to make it clear that "Don't have time now? Click Here to receive an email to resume training later" actually means that the user will lose all progress and have to start again from the beginning

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. CrossFit email template

    How about a CrossFit themed e-mail template?

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Phishing Campaign Employee Data

    I see a "search" option within the Employee Data page of a campaign, and it states that I can search by name, department, job title, or email. I typed in a department name which I copied and pasted from the campaign summary page, and it found no results.
    In an ideal world, either this would work, or there would be a department drop-down that would allow me to filter.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. We'd like to assign arbitrary points

    The attack sophistication 1 through 5 is perfect. Now we'd like to be able to assign that 1/2/3/4/5 point value to each campaign we run, and have that metric used for evaluating users. A custom report would be good. If one user clicked two 5 point campaigns, he or she is more dangerous to us than someone that has clicked three 1 point campaigns.
    We are currently keeping track of these points via spreadsheet and would like it integrated to Phish Threat.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. On-the-fly Training Reminders

    I would like to be able to send reminders for an outstanding campaign. The initially scheduled reminders were not completely effective in getting all participants to complete the training (in fact, just over 50% completed training, with 6 reminder emails sent!). I would like to be able to send reminders for all of those who have not completed training, at the push of a button. As I've requested previously, I'd also like to be able to inform managers of status of their employees at the push of a (different) button.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Specify Work Hours

    It would be nice if we could specify our normal business hours under General Settings or for a specific campaign so that emails would only be sent out during that time frame. We're finding that some users are not seeing emails due to sending out at odd hours.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Acknowledgement Message Doesn't Match "Complete Training" Button

    The phishing training says the following:
    "By clicking "Acknowledge" or "Start Next Module" below, you agree that you have read this training material".

    There is no Acknowledge button, only a Complete Training button. This is confusing to the users.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Creating Groups Dynamically

    I would like the ability to create groups from within the tool, so that I can add people to groups based on how they respond to phish. For example, if someone gets under 100%, they are added to "ongoing training group a", and if they get under 60%, they are added to "ongoing training group b". The tool does not let me automate to that level, and I am not seeing a way to do it easily without adding users one-at-a-time to a new campaign.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Attack Screenshot Too Small To be Read

    When some one receives an email after clicking on a phishing email we send the AttachScreenShot is so small they can't read it at all.

    Is there a way to make this bigger. Users have no idea what email link they actually clicked on that was the phishing.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Manually Fail Users

    Currently, depending on the campaign type, the user fails the campaign when they do the action the campaign is testing. It would be nice to be able to manually fail users in a campaign. For example, if I ran a credentials harvesting campaign and a user clicks the link but doesn't enter their credentials. The system wont mark them as fail. However, in our opinion that is a failure. I would like to be able to manually mark the user as failed the campaign.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Email Report for Campaign Status

    Currently, the only way to see the current state of a campaign (i.e. who click, who opened, etc.) is to login to the portal. It would be nice if there where an option to configure for the system to send an email. For example, an email could be sent to a specific address when a user in a campaign opens a phishing email.

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Planned  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Multiple Phased Attacks

    Need to be able to create a campaign that sends, in a time phase, multiple emails to the same user list. This would be configured today as multiple campaigns. If I knew I was going to have 3 attacks over time at the same user list, today I would create 3 campaigns. I'm requesting multiple attack <-> training pairs in the same campaign.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Phish Threat

Categories

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.