"You've been phished" for Word document attachments
It's great that when someone clicks a link in a phishing e-mail, they get directed to a "You've been phished" page. But if they open an attachment like a Word document, they don't realize what they've done. It would be great if the text in the document indicated this after they've enabled editing.
-
Hi there,
Currently we don't place text in the attachment as we believe it would tip off some users to not open the attachment, for example, if they are to preview the attachment before opening. We have a great feature in the system which allows for attachments with macros, however, which will allow you do accomplish something similar in that it will take the user to any landing page of your choice after they enable macros on the document.
You can do a phishing test which contains an attachment with a macro on it, which can take the user to a landing page of your choice once they click to enable the macros. It can be a great way to provide feedback to a user after they fail your attachment phishing tests.
Thank you,
Katie Brennan
KnowBe4 -
I agree with this feature request. Not sure why it hasn't been added yet.
The web based landing pages should be adapted and migrated into all attachments. Or at the very least, follow up with the user clicking on an attachment with an email notification detailing they clicked on an attachment (and give link to the Red Flags landing page).
We disable macros. So your fix isnt a good one.
-
Hi Jordan,
Currently what Katie said above is still the functionality going forward.
Here is the documentation with all of the attachment types and the behavior when they are activated.
I apologize I don't have a better solution for you on this one. I've submitted a feature request on your behalf for additional functionality with our attachment types.
Thank you for the contribution and I look forward to any other questions or suggestions that you might have!
サインインしてコメントを残してください。
コメント
4件のコメント