Log/Analyze Phishing Alerts

Jeff Golas

20. tammik. 2017, 21.16

It would be awesome, and an added feature of the phishing alert system, to provide an API/Database of the statistics of a reported phishing email via the alert platform. This could possibly be used to automate blocking domains/addresses on a firewall or via an email platform.

Possible metrics: Originating server, originating email address, "from" address, subject line, and any links or domains in the body.

5

• Virallinen kommentti

  

  Katie Brennan 01. helmik. 2017, 16.10

  Hi Jeff,

  Thanks for your feature request! I've notified our development team and they will review it.

  If you have any other ideas or comments, please let us know.

  Thanks,

  Katie
  KnowBe4

  Kommenttitoiminnot Pysyvä linkki
• 

  Matthew Adkins 23. toukok. 2017, 21.00

  And if that analytic data could be formatted to feed into a SIEM that would be cool. 

  0

  Kommenttitoiminnot Pysyvä linkki
• 

  Ryan Clarque 27. jouluk. 2017, 20.17

  I would be more interested in this just by starting to surface the information in your platform.  You obviously know which use cliced the phish alert button, if it was real or simulated, so why not attribute it to the user's profile and create metrics around who the MVP is for our organization.

  0

  Kommenttitoiminnot Pysyvä linkki
• 

  Lauren Ashley 28. jouluk. 2017, 15.56

  Hi Ryan,

  Thank you for your input. I have forwarded your idea to our Development team for review. We base a lot of our development on customer feedback so we do appreciate your input. Feel free to share any other ideas you may have!

  Thanks again!

  Lauren
  KnowBe4

  0

  Kommenttitoiminnot Pysyvä linkki
• 

  Gerry Morley 25. elok. 2020, 17.30

  This is 3 years old - has there been any update on this on the dev roadmap. It would be great for admins to be able to pull a report on the number of non simulated emails vs simulated emails each user sends. I know we can get the count of the number of simulated emails a user reports but no stats on the non simulated - apart from the useless phish alert button dashboard. 

  aybe a separate tab in the console like second chance would be great that reports on this information. Maybe on the dashboard - you could have the top phish alert users with stats on # of simulated vs non simulated emails reported.

  0

  Kommenttitoiminnot Pysyvä linkki
• 

  Walter Nelson 26. elok. 2020, 16.32

  Hi Gerry,

  Thank you for your continued interest in this feature. I have added another feature request for this on your behalf. I did find a potential workaround for you in the meantime. We do have our PhishER platform that can accomplish much of what you are looking for. I have included a screenshot of what that might look like as far as the data that is displayed and also included a link to our PhishER documentation. Thanks again for your contribution to the community board. I can definitely see why the addition of this feature would be a valuable tool.

  PhishER

  

  0

  Kommenttitoiminnot Pysyvä linkki

Kirjaudu sisään jättääksesi kommentin.