Add a third message option for PAB

Answered

Alan Lloyd

December 12, 2019 00:15

So currently we have the option to display one of two messages to the end-user when they report a message via the PAB. One message if the email being reported was a simulated phish test that we initiated, and another message if the email being reported was not a simulated phish test.

It would be really cool if there was a third message option that applied if the email being reported came from specific email addresses. This would greatly assist with legitimate system generated messages that our users frequently report as phish. Rather than having to reply to each individual user to let them know that the email was legitimate, this option would inform them at the point of reporting.

2

• Official comment

  

  Douglas Freeman December 13, 2019 12:59

  Hello Alan! 

  Thank you for posting on the community board! It would be helpful with email provisioning to have a third message option that only triggered when the email came from a particular place designated by the administrator. 

  I do want to direct you to our newest platform PhishER! You can click here for the product manual

  PhishER is an email provisioning tool that ties directly into the PAB but can be used without the Phish Alert Button as well. This new platform will ingest the email and based around rules set by the admin has the ability take action on them as well. 

  Here is the Actions portion of the product manual that will go in-depth about its capabilities. 

  These actions can be configured to send a custom email to an end-user to let them know that an email they sent was not a threat. 

  Here is an example of what that feature looks like below. 

  

   

  I would absolutely review the PhishER platform, but I've also I've submitted a feature request to the Dev team on this item for you in the event that PhishER is not a viable option! 

  Thank you for contributing to the community board, we look forward to any other good ideas that could enhance the platform. 

  Comment actions Permalink
• 

  Bruce Collick December 13, 2019 13:58

  I agree with Alan. Using PhishER is a good stop-gap, but if PAB could Prevent the user from reporting specific addresses the user wouldn't have to retrieve the message from their Deleted Items. And, PhishER wouldn't have to process them!

  0

  Comment actions Permalink
• 

  Matt Hotujec July 22, 2020 17:29

  I'll add that it would be fantastic if the rules and actions created in PhishER could be used to evaluate the message about to be reported via the PAB. 

  For instance, we have some rules and actions configured to determine if certain messages come from known 3rd parties that we use and automatically send a response via PhishER that the message was sent for business purposes.  The rules we use primarily rely on SPF, DKIM, or DMARC, so it would be great if the PAB could evaluate those in real time and possibly notify the person before they hit the final "Submit" button.

  0

  Comment actions Permalink
• 

  Douglas Freeman July 23, 2020 15:29

  Hey Matt, 

  Thanks for contributing to the community board. As of right now, the PAB does very little analytics of the email before forwarding it on. I can see the need of wanting those to be evaluated in real-time when the PAB is pushed.

  I've submitted a feature request on your behalf for this item to our development team!

  Than you again for your contribution!

  0

  Comment actions Permalink

Please sign in to leave a comment.