PhishAlarm simplifies the process users follow to report phishing and other suspicious messages to abuse boxes. Users do not need to know how to capture header information or other technical details; they simply click to report.
Reduced Helpdesk Calls
PhishAlarm reduces or eliminates IT helpdesk calls by allowing employees to route suspicious emails directly to a monitored inbox.
Faster Response Times
PhishAlarm makes it easier for employees to report suspicious messages, allowing them to alert IT teams in a quick, efficient manner. This helps to shorten the phishing delivery-recognition-response window for information security analysts.
PhishAlarm integrates with:
- Microsoft Outlook for Windows (2010, 2013, 2016)
- Microsoft Outlook 2016 for Mac
- Browser-based Office 365 and Gmail email clients
- Outlook Web Access (OWA) for iPhone/iPad and Android
PhishAlarm supports multiple end-user notifications, all of which are completely customizable:
- Challenge/prompt message – This appears when the reporting button is clicked, giving users the option to change their mind about reporting a message.
- Phish notification – Users receive this message (via a pop-up window or email) when reporting a potential phish or a simulated attack. The standard text thanks users for taking the action and asks them to remain vigilant to suspicious messages in the future.
- Whitelist notification – This message (received via a pop-up window or email) notifies users that an email they reported was actually a safe message from an address/domain that was whitelisted by your organization.
- Wombat training notification – This response (displayed in a pop-up window or sent via email) alerts users that they reported a safe message that included a Wombat training assignment.
Flexible Configuration Options
PhishAlarm offers a number of configuration options for administrators that make the tool more flexible and efficient for individual organizations. Key administrative features include the following:
- Whitelist Email – This patent-pending feature allows administrators to filter based on domain, subject, and/or email headers. This reduces the number of emails that require evaluation, allowing infosec response teams to cut through the clutter and focus on actual potential threats.
- Customization of the PhishAlarm button – Administrators can choose from multiple button layouts and customize various labels in order to create a look and feel that support their corporate brand.
- Tailored system and forwarding actions – Administrators will have the option to tailor system actions (e.g., deleting or moving to Junk folder) and reporting actions (e.g., forwarding to specific inboxes) based on the following notification settings:
- Reported a simulated phishing attack
- Reported a potential phish
- Reported a potential phish with an attachment
- Reported a whitelisted email
- Reported a Wombat training assignment
PhishAlarm features powerful reporting that allows you to easily access and share valuable business intelligence, including the following information:
- The users who reported emails
- The types of emails reported (potential phish vs. simulated attacks)
- The number and types of reported threats identified over time (hours, day, weeks, months, quarters)
This type of data can help you gauge how successful your security awareness training program has been, and how well users are retaining the best practices they are being taught.