Maps and IP Geolocation: Where are your clickers?
When your users fail your phishing tests, we can identify their location based on the public facing IP address where the click came from and provide that information to you. This information will be located in your individual phishing campaign report.
At times, the locations you see may not be where your users are physically located. This is normal. The locations show where clicks were routed based on your system set up and any security services (such as an anti-virus or an outbound web filter) you have in place. Clicks may instead indicate the locations of where servers or datacenters for those services are located.
Your users may have initially clicked within their proper geographical regions, but the security that you have in place may have clicked afterwards to inspect the links, for example. This would not just happen on our phishing tests, but also any other email traffic in your system.
More information on our Maps and IP Geolocation can be found here: Monitoring and Reviewing Campaigns: Maps and IP Geolocation