Attack Simulation Training is an intelligent phish risk reduction tool that measures behavior change and automates the deployment of an integrated security awareness training program across an organization. It is available with Microsoft 365 E5 or Microsoft Defender for Office 365 P2 plan. In a phishing simulation, admins can use end user email notifications to inform targeted users about their participation in the campaign or to appreciate a successful phishing report.
We’re pleased to announce that these can now be localized, customized, and targeted based on the user’s locale. Security admin will be able to customize 2 different types of notifications:
- Positive Reinforcement Notification
- Simulation Notification
Positive Reinforcement Notification
Positive Reinforcement Notification allows you to send an appreciation mail to the users who report a phish to reinforce positive behavior. You can choose to send these notifications during the campaign as well as after it completes.
Simulation Notification
Simulation Notification allows you to send a notification to the users to inform them about their participation in the phishing campaign when no trainings are assigned to them. You can assign this notification to all users, users who clicked, or to the users who were compromised, and a notification will be sent to those users after the campaign ends.
How to create or access these notifications?
A new library of notifications is provided under a new tab called ‘End user notifications’ which will be used to create, edit, copy and delete notifications. Notifications are either Microsoft curated or customized by a customer.
1. Microsoft curated notifications (Global)
Enables you to choose from Microsoft curated notifications in 12 languages for a ‘click and go’ experience.
2. Custom notification created by a tenant (Tenant)
Enables you to tailor the notification to your requirements in 12 languages. For example, include your own branding, messaging, code, and more.
Creating a custom notification is a great option for enterprises who want to create a notification from scratch using Rich Text Editor. The notification can be created either by using the text tab (RTE) where the content can be created within the editor, copied from external sources, or by using the code tab to input the HTML code.
- Dynamic tag: Allows you to choose the user's first name, last name, UPN, email address, and payload dynamically.
- Use from Default: Allows you to choose Microsoft defaults landing page with predefined formatting and make additional modifications as necessary.
- Company Logo/images: Allows you to paste the image/logos of your choice and insert videos of up to 4MB.
- Body: Allows you to create content/text of your choice.
- Shows the content of the payload chosen
- The “code” tab that comes along with the rich text editor can be leveraged for additional sophisticated design requirements using HTML code. The code can be saved and reused for new simulations.
How to use notifications in simulations?
A new node called ‘Select end user notification’ is added to the launch simulation and simulation automation workflow where you can choose to not deliver any notification, choose from Microsoft defaults or customized end user notifications. Positive reinforcement notification can be delivered during the campaign or after the campaign whereas Simulation Notification would be delivered after the campaign ends as per the users’ actions-all users, clicked, and compromised.
We hope you enjoy using custom end user notifications in a simulation. Looking forward to your experience and feedback!
Want to learn more about Attack Simulation Training?
Get started with the available documentation today and check out the blogs for Setting up a New Phish Simulation Program-Part One and Part Two. In addition to these, you can read more details about new features in Attack Simulation Training.
Microsoft
