Initial Baseline Email to Determine Your Phish-Prone Percentage

The answer to this question can vary on a case-by-case basis. However, as a general best practice, we recommend using a template that is generic and can apply to each individual in your organization. We also recommend that you send the same template to all users all at once for your baseline test.

Depending on the type of setup your organization has or any particular vulnerability that has been exposed in the past, you may wish to make your own custom email. You can also choose one of the many templates included in the System Templates area. For some generic templates that might be the right choice for you, check out our Baseline Templates category under System Templates.

We do have suggestions on two basic templates that will work as a general catch-all for most organizations.

If you only wish to monitor your user's clicks, see our Change of Password Required Immediately email template. If you wish to monitor your user's clicks and see how many enter their information, see our Password Check Required Immediately email template. You can find both of these in System Templates under the IT category.

The Change of Password Required Immediately template and Password Check Required Immediately template can be seen below:

The "Change of Password Required Immediately" template looks like this: (Click to view)

The "Password Check Required Immediately" template looks like this: (Click to view)