BrainStorm Threat Defense phishing templates will be sent as part of a Campaign.
Campaigns consist of:
- Email to be sent as part of the campaign
- Landing Page user is directed to in the email
- Feedback Page user is directed to if “phished”
- Sending Profile
- Domain used for the Landing Page and Feedback Page (generated by QuickHelp)
- Target Audience for the respective campaign (Groups)
- Date to Start the campaign
- Date to Complete the campaign
- Type of automatic Trigger
- Add to Group action of automatic Trigger
BrainStorm will provide preconfigured Campaigns that should be duplicated and modified prior to use, which is BrainStorm's best practice. This document outlines how to modify an existing campaign. To learn how to create your own campaign, see Create a Threat Defense Campaign.
Prior to modifying an existing campaign, you will need to create a corresponding Sending Profile and Group, and QuickHelp will need to generate a corresponding domain.
- Click Campaigns > Simulated Phishing > Campaigns in the Admin Portal.
- Check the checkbox to the left of the Campaign in question.
- Click Duplicate from the Action Bar.
- Click OK to proceed.
- Modify the Campaign Name.
- Leave the Type, Email Template, Landing Page, and Feedback Page as they are (they are preconfigured by QuickHelp).
- Select the desired Domain from the Domain pulldown menu.
NOTE: These Domains are generated by BrainStorm and will be used for the Landing and Feedback pages. In general, there will be a separate subdomain specific to each default campaign (e.g. Microsoft, LinkedIn, etc.).
- Leave Direct Send (Recommended) selected as the Send Method.
If you change the Send Method to SMTP Account, you will be required to select a corresponding Sending Profile. Steps 9-11 only apply when using the Direct Send method.
- Leave the Sender Name and Sender Email as they are (they are preconfigured by BrainStorm to match the individual campaign).
- Enter a Reply To Email (optional).
NOTE: This allows you to route replies to an internal email rather than escalating emails to the sender. This email will only be visible to the end-users if they reply.
- Enter a Reply To Name (optional).
- For the Target Audience, use Type Assist or click Browse.
- Type Assist - enter a minimum of three (3) characters to be presented with options matching what you typed.
- Browse - find and select the desired Group.
NOTE: It is a QuickHelp best practice that you initially send each Campaign to a small test group to thoroughly validate all steps and that the domain hasn't been compromised.
- Check the Send Compliance Email box to send out an email to all users seven days from the start of your Campaign or once the Campaign is marked as Completed informing users of the phishing campaign email. This email is not configurable and cannot be withdrawn. If desired, uncheck this box to not send the email. An example of this email can be viewed at the bottom of the support article Create a Threat Defense Campaign.
- Select the desired Time Zone for this campaign from the Time Zone pulldown menu.
You will not be able to change the Time Zone or set a Start or Send By Date until you have selected a Target Audience. The selected time zone will determine when the campaign actually starts.
- Choose a Date and Time to start sending Campaign emails in the Start Date field.
- Choose a Date and Time by which to have all Campaign emails sent in the Send By Date field.
NOTE: To avoid sending issues, emails will be distributed between the Start and Send By date. The Send By Date will pre-populate with the estimated time needed to safely send to all targeted, but you can extend as desired. You should not, however, change the date/time to anything earlier than the default.
- In the Automatically add user to group based on trigger section, choose a Trigger Type from the Type pulldown menu.
- Reported Email
- Click Browse next to the Remedial Training box and select a Skill Path or Asset for users.
NOTE: The group will automatically be generated and named based on the trigger and campaign name. For example, if the trigger is Submitted and the campaign is Amazon - Password Phishing the group will be named "Submitted - Amazon Password Phishing" and will contain all users who submit information in the link in the campaign email.
- Click the ACTION plus (+) sign to add the group trigger.
- Optional: Check the box below the Trigger Type to set a due date on completing the assigned Skill Path or Asset
- Click the ACTION plus(+) sign to add an additional Trigger Type.
VERY IMPORTANT: If you do not click the ACTION plus (+) sign users will NOT be added to the Group when they select the trigger.
- Click Save Changes in the Action Bar.
The campaign will move from Draft to In Progress on the Start Date/Time.