How does the phishing simulation work?


Your employees receive phishing mails tailored to them over a set period of time. For this purpose, data is collected - analogous to the procedure of a real attacker - and used to generate realistic mails. 

For each participant, 2 to 3 emails per month are sent at a random time. These emails represent different levels of difficulty, which are based on the preparation time an attacker would have to spend for a comparable attack. 

If the contents of the phishing mail are opened by an employee, he or she is forwarded to an explanation page with concrete instructions and explanations. In this way, employees learn interactively how to recognise phishing mails in the future.

Click rates of the employees are calculated in our ESI score. This makes security awareness measurable and the current risk of danger visible. The group-related evaluations are displayed in the reporting dashboard.