We attempted to move to DMI for phishing in lieu of traditional mail flow so that we could phish our staff with attachments/macros, traditionally blocked by our mail system (Exchange Online). While this worked, it had a side effect. Because the injected messages do not pass through mailflow rules, our external sender notification are not applied to phishing messages.
Our current phishing training uses the system temples and are applied to departments to we can target content which would be applicable to a given job role. We allow the system to choose from a large group of templates so that users in the same department do not get similar messages on the same day, notifying each other of the test.
While we can customize individual templates, due to the number in the pool, it would be quite onerous to do so for all of the templates.
Without the company's prepended subject and header, we are sending mixed signals while using DMI as phishing messages do not contain the subject and body security notifications all other external messages receive.
We would like the ability to prepend the subject and body of the messages sent via the tool on a mass scale, e.g., update all system templates with a custom subject and body as a company sees fit. For example, update every template with a prepended subject of "External -" and a prepended body with HTML formatted text stating "CAUTION: This email originated from outside COMPANYNAME. Do not click links or open attachments unless you recognize the sender and know the content is safe."
Adding this functionality would add a lot of value to the DMI solution as it is currently the only mechanism for phishing users with attachments. However, without this functionality, phishing messages for companies notifying their users of external senders is confusing to the user base.
Please sign in to leave a comment.