Let's get started! This is an outline of how to send a simple phishing simulation using one of our pre-built templates. If you'd like to create your own email template or landing page and want to explore more advanced features then browse more of the articles in this knowledge base.


The first phishing campaign is all about getting a baseline 'phish risk' percentage. Regular phishing simulation and training will significantly reduce this percentage (and therefore risk) over time, but it's important to do it regularly because change in staff and old habits creeping back will mean the 'phish risk' increases again.


The Steps


1. Log in to the EveryCloud phishing simulator using the details in your welcome email.

 

2. Click on 'Users & Groups' from the left menu, then 'New Group' in the top right. Give the group a name and import users via .csv or one by one. Save the new group.


 

3. Follow the steps in the our whitelisting guide to ensure your simulated phishing emails don't get caught by spam filtering measures. 


4. Click 'Campaigns' from the left menu, then 'New Campaign' in the top right. Select a template (if this is your first campaign, then choose one from the 'Baseline' category - these have been built to cover a wide range of potential users, therefore giving you a realistic first baseline result). The landing page will be automatically populated based on the email template. Set a launch date (optionally, you can spread out when messages will be sent, by also completing the 'send emails by' box). Select a sending domain, add your group and launch your campaign. 

 

And now you wait... We'll be busy recording who's clicked and / or entered details.


Want to get more fancy with your simulation??



Once you've identified who's vulnerable to phishing attacks, you'll want to get them scheduled for training to eliminate the problem. Visit the Training platform to create a campaign where you can target just the people who have failed this phishing campaign if you wish.