With PhishFlip, you can reuse user-reported emails in phishing campaigns in your KSAT console. You can manually create phishing templates or allow PhishER and KSAT to create automatic PhishFlip phishing campaigns. When turning a reported email into a phishing template, PhishFlip removes the potentially malicious elements in the email.
Creating KSAT Templates with PhishFlip
In your PhishER platform, there are three places where you can create KSAT templates: the Run drop-down menu, the Message Details page, or the Actions tab. See the subsections below for steps for each of these methods.
Method 1: Run Drop-Down Menu
To create a KSAT template from the Run drop-down menu, follow the steps below:
- Log in to your PhishER platform.
- Navigate to the Inbox tab.
- Click the check box next to the messages you would like to turn into a phishing template.
- Click the Run drop-down menu in the top-left corner of the page.
- Click Create KSAT Template. When you click this button, PhishFlip will create and add the new template to your KSAT console.
Method 2: Message Details Page
To create a KSAT template from the Message Details page, follow the steps below:
- Log in to your PhishER platform.
- Navigate to the Inbox tab.
- Click a message to open the Message Details page.
- In the Actions and Discussion sidebar, click the Run drop-down menu.
- Click Create KSAT Template. When you click this button, PhishFlip will create and add the new template to your KSAT console.
Method 3: Actions Tab
To create a KSAT template from the Actions tab, follow the steps below:
- Log in to your PhishER platform.
- Navigate to the Actions tab.
- In the top-right corner of the page, click New Action to open the Action Details page.
- Enter a name and a description for the action. We recommend assigning a meaningful name and description to your action.
- Click the 7. Find Similar Messages drop-down menu, then select the Create a KSAT Phishing Template option.
Important:The options in this step will not be available if Every Message is selected in 1. Choose how this action should be triggered.
- (Optional) Select the Automatically PhishFlip all found messages option if you would like to use PhishFlip for all messages triggered by this action.
- Click Save Action.
Creating Automatic PhishFlip Campaigns
In your PhishER platform, there are two ways to create an automatic PhishFlip campaign: the Actions tab and the PhishRIP Queries page. See the subsections below for steps for each method.
Method 1: Actions Tab
To create an automatic PhishFlip campaign from the Actions tab, follow the steps below:
- Log in to your PhishER platform.
- Navigate to the Actions tab.
- Enter a name and a description for the action. We recommend assigning a meaningful name and description to your action.
- Click the 7. Find Similar Messages drop-down menu, then select the Automatically PhishFlip all found messages.
Note:When the Automatically PhishFlip all found messages option is selected, PhishER uses the emails found by PhishRIP queries to automatically create phishing templates and start phishing campaigns in KSAT. The automatic phishing campaigns send the simulated phishing emails to the users who received the original, malicious emails.
- Click Save Action.
If the action is set to run automatically, the PhishFlip campaign will run once the action is triggered. To learn how to configure your action to run automatically, see our How to Create and Manage PhishER Actions article.
Method 2: PhishRIP Queries Page
To create an automatic PhishFlip campaign from the PhishRIP Queries page, follow the steps below:
- Log in to your PhishER platform.
- Navigate to the PhishRIP tab.
- In the ID column, select the query you want to make a campaign from to open the PhishRIP Messages page.
- Select the check box next to the messages that you would like to include in the campaign.
- Click the Run drop-down menu in the top-left corner of the page.
- Select PhishFlip. When you select this option, PhishFlip will move the emails from the users' inboxes to the Quarantine folder, create a KSAT phishing template, and then start a PhishFlip campaign.
To find your new phishing campaign in your KSAT console, select the Phishing tab and navigate to Campaigns > PhishFlip.
Automatic Campaign Details
After you create a PhishFlip campaign, users who received the original email will be automatically added to the campaign. The campaign will run for three days and will use your default landing page. To learn how to change your default landing page, see our KSAT Account Settings: Phishing article.
Creating Phishing Campaigns with PhishFlip Templates
To create a phishing campaign using your PhishFlip templates, log in to your KSAT console and click the Phishing tab. Then, navigate to Email Templates > My Templates and select the PhishFlip category.
For more information on how to create and manage your phishing campaigns, see our Creating and Managing Phishing Campaigns article.
Viewing Reports with PhishFlip Campaign Data
In your KSAT account, you can create and view reports about your phishing campaigns. You can customize the report on the Phishing Security Test page to include your PhishFlip campaign data.
To customize this report with your PhishFlip campaign data, follow the steps below:
- Log in to your KSAT console.
- Navigate to Phishing > Reports.
- Select the Include PhishFlip Campaigns drop-down.
- Select an option from the Include PhishFlip Campaigns drop-down menu. For more information about these options, see the screenshot and list below:
- Include PhishFlip: Select this option to include data from all of your phishing campaigns in your report, including PhishFlip campaigns.
- Exclude PhishFlip: Select this option to include data from all phishing campaigns in your report, except for PhishFlip campaigns.
- Only PhishFlip: Select this option to only include data from PhishFlip campaigns in your report.
For more information about the report on the Phishing Security Test page, see our How to Monitor and Review Overall Phishing Reports article.