Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community
SOLVED

Office 365 Attack Simulator is not working

Copper Contributor

I've been a fan of this great little tool for over a year and it stopped working from a few days ago. I use its Spear Phishing (Credentials Harvest) attacks. And since Monday, I can't seem to launch a new attack. I'm a Global Admin and I tried this with Chrome, Edge, IE and Firefox but no luck. 

14 Replies

Open a support case.

What happens when you try to launch the attack? Do you get an error message or does the GUI simply doesn't respond?
Are your licenses still active and do you have the correct licenses assigned?
You will need a license which contains at least the Microsoft Defender for Office 365 Plan 2 license option.
Please let us what steps you are taking to launch the attack.
I have E5 license and I used to work with this tool. Nothing changed in my subscription and I'm a global admin. No error messages pop up. The attack simply doesn't execute. No emails sent. Microsoft acknowledged this and they're working to fix it.

Hi isurudiv,
Good to hear that Microsoft is taking care of it, hopefully it will be resolved soon.

best response confirmed by isurudiv (Copper Contributor)
Solution

@isurudiv 
This might be a little off topic, but I would recommend you to try the new attack simulation training feature instead of the old attack simulator tool found in the Security & Compliance center.

The new feature enables you to use a whole different kind of payloads, and also is able to give the end-user access to trainings.
You can find this new attack simulation training in the M365 Security Center:
1: Go to https://security.microsoft.com/ 
2: Click on the Attack simulation training

 

Please be aware that this is in preview, but all functions that i've tried have been working just fine.

Good to bring that up Pontus!
Not to promote in any way but I expect to have a new blog about Attack Simulation Training written by myself to be added to practical365.com this week.
As you said the Simulation Training has a lot of extras including some really good reporting capabilities and some nice security awareness training you can offer to your users.

@BemmelenPatrick Awsome, looking forward to see it!

It's resolved now. And Microsoft has a brand new Attack Simulator in https://security.microsoft.com
Thanks, and I've discovered this recently. It's improved a lot and the new tool is pretty handy.

@Pontus Själander How do you actually launch a new attack from the https://security.microsoft.com/ Attack Simulator Training?  If you go into the link to learn more about it, it says to go to https://protection.office.com/attacksimulator which is the old version being retired next week?

@Pontus Själander I think it's a permissions issue - what role do I need to create new simulation in the new https://security.microsoft.com/attacksimulator please?  Thank you

Hi Sarah,

I would advice you to take a look at this article, there are a couple of roles available for the Attack Simulation that might fit your needs:
https://docs.microsoft.com/nl-nl/microsoft-365/security/office-365-security/permissions-in-the-secur...
1 best response

Accepted Solutions
best response confirmed by isurudiv (Copper Contributor)
Solution

@isurudiv 
This might be a little off topic, but I would recommend you to try the new attack simulation training feature instead of the old attack simulator tool found in the Security & Compliance center.

The new feature enables you to use a whole different kind of payloads, and also is able to give the end-user access to trainings.
You can find this new attack simulation training in the M365 Security Center:
1: Go to https://security.microsoft.com/ 
2: Click on the Attack simulation training

 

Please be aware that this is in preview, but all functions that i've tried have been working just fine.

View solution in original post