Learn the step-by-step process to launch a successful phishing campaign!
The key steps to getting started include authorizing your company's domain, creating target groups, choosing and customizing phishing templates, and safe-listing domains and IP addresses.
In this video, we're diving into the essentials of launching your very first phishing campaign successfully. So, grab a cup of coffee and let's break it down!
First things first, we need to make sure your company's domain is authorized. Don't worry; it's a breeze. Just click a few buttons, add your domain, and send a quick verification email to yourself or a teammate. Click the link in the email, and boom – your domain is good to go!
Now, let's talk about target groups. We're using groups to organize your end-users for the phishing simulations. Creating a group is easy – name it, choose how you want to import your targets (we've got integration options like Azure, Okta, or just manual CSV file!), and you're all set.
Next up, templates. We've got a whole library of them. Pick one that suits your style, and if you feel creative, customize away!
And most important, safe-listing domains and IP addresses is crucial for smooth sailing. The video emphasizes the necessity of safe-listing domains and IP addresses to ensure the deliverability of system emails, phishing simulations, and associated pages. This action is required for both Microsoft and Google email clients, and it is also recommended for any security vendors in your environment such as firewalls or email filtering programs like Mimecast, Barracuda, etc.
Now, let's launch that campaign! Head to the Tests section, click on Campaigns, and create a new phishing campaign. Name it, choose your target group, and tweak the settings to your liking. Don't forget to safelist the domain used on the template you select for the campaign!
Lastly, review everything, click "Finish," and watch your campaign come to life.
And that's it! You've just set up your first phishing campaign. Easy, right? You can check progress in the Manage Tests and Dashboard sections, and you can even pull reports on summarized results!
Happy phishing!