Allow admins to mark users as having reported phishing emails
G
Greg Mikesell
Right now to report a phishing email the message needs to be sent to report@phish.mycurricula.com. This is causing us issues as several of our clients have outbound spam protection on their email systems which detect the SAT emails as malicious. To bypass the spam protection takes building a new email connector in M365, and is problematic, and due to the nature of the detection Whitelists/Filters are not an option.
I'd love if I and other admins could go into a phishing campaign and check a box for a user to mark them as having reported the phishing email. This would allow us to correctly use the functionality and provide the customers with the useful data for reports, but also allow us to deal with these when users contact us over the telephone, send a screenshot instead of the actual message, or otherwise report a phishing message.
Canny AI
Merged in a post:
Mark as Reported button
N
Nathan Reed
Our staff tend to report suspected phishing emails via alternate means such as our HelpDesk, verbally or occasionally via Teams despite "Report a Phish" in Outlook being available to them as the standard method.
In instances where they report a phishing simulation via alternate means, we are not aware of a method of manually marking a phishing simulation as reported by a given Learner within SAT. This means reports from SAT are not entirely accurately representing the ability of our staff to identify and report phishing emails, even though the root cause is staff choosing non-standard means of reporting phishing emails and not an issue with SAT itself.
A button within SAT to mark a specific phishing simulation as reported by a given Learner sounds like it would catch this scenario.