Combined Phish Alert Button with Report Message to Microsoft

Respondida

Comentários

109 comentários

  • Avatar
    Jim McElwain

    Hello Jonathan,

    We appreciate your feedback! I have gone ahead and added you to the feature request.

    Best,

    Best,
    Jim McElwain
    KnowBe4

    0
    Ações de comentário Permalink
  • Avatar
    Stan Oleszkowicz

    Please add me to this feature request.

    Thanks,

    Stan

    0
    Ações de comentário Permalink
  • Avatar
    Alex Hutton

    Hi Stan,

    Thank you for showing interest in this feature request!  I have added you to it, we appreciate your feedback.

    Cheers,

    0
    Ações de comentário Permalink
  • Avatar
    Chuck Benslay (Editado )

    This "feature request" has been asked for since January of 2020...

    I would just like someone to figure out how to keep from getting false 'clicks' on phishing emails whenever a User uses the Microsoft button to report a suspected phishing email.  The User is doing the right thing (my organization cannot use the KB4 PAB), but they still get assigned a remedial training from the false click.  Then they have to submit a HelpDesk ticket abut it.  The HelpDesk has to remove the false click and any assigned trainings from it.  This has been going on for months and it doesn't appear there is going to be a solution...

    Can the IP address be used to narrow it down to a Microsoft 'click'?  There has to be some way to determine if it was one of our Users vs. an investigatory click from Microsoft.

    Please look into some way to prevent these false clicks.

    0
    Ações de comentário Permalink
  • Avatar
    Jacob Hahn

    Hi Chuck,

    As far as false clicks go, I would suggest opening a support ticket inquiring about this as we do have a few things that might help.  If you have Advanced Delivery Policies working, Microsoft will know these emails are simulated and will not click on them when using the Microsoft report button. 

    If that is not possible, you can still make use of the IP ignore list.  If you can get a list of IPs Microsoft uses to scan links, you can ignore those IP ranges using that feature. 

    A ticket will be the best place to work through how to make these work in your environment.  We will be happy to help!

    Thanks,

    0
    Ações de comentário Permalink
  • Avatar
    Paul Hawkinson

    +1 for me as well.  I'm with Chuck above wondering when this is going to be implemented.  There seems to be enough interest.  Is there anything in particular that is holding this up?

    0
    Ações de comentário Permalink
  • Avatar
    Trevor Wilson

    Hey Paul!

    Thank you for reaching out! I'll add you as a +1 to this request as well! At this point, we can't provide any specifics on potential blockers, but whenever we have any updates to the Phish Alert Button, they will be made available in our Phish Alert Button Changelog.

    Have a great day!

    0
    Ações de comentário Permalink
  • Avatar
    Scot Pridgen

    +1 for me on this feature as well.  We asked for this with our previous vendor and they had no interest in pursuing it.  I hope you are able to get it working so we may receive all the benefits of both the KB4 and 365 platforms; especially since there is not a competing interest between the two platforms.

    0
    Ações de comentário Permalink
  • Avatar
    Kurtis Carter

    Hi Scot,

    I've gone ahead and added you as a +1 to the request. When we have any further updates, they'll be posted to our changelog at the following location in our Knowledge Base: Phish Alert Button Changelog.

    We appreciate the feedback on how important this feature is for you and your organization!

    Thank you.

    0
    Ações de comentário Permalink
  • Avatar
    Prasan Naik (Editado )

    Definitely something that should be prioritized by the devs at Kb4. Having two options is not efficient and causes confusion. +1

    Ideally I think the following would be a solution. A Kb4 phishing button that automatically reports to MS if the email was not generated by Kb4. If the email was spam/junk or non-kb4 phishing attempt, that should be reported to MS O365.

    0
    Ações de comentário Permalink
  • Avatar
    Trevor Wilson

    Hey Prasan!

    I've added you as a +1 to this request!

    Thank you for your feedback as well. I will be sure to update the feature request to let our developers know your idea.

    Thank you again!

    0
    Ações de comentário Permalink
  • Avatar
    Craig Kessler

    +1 for me on this feature as well. Agree with everyone else who stated it would be great to get the benefits of bot the KB4 and O365 platforms.

     

    Thanks!

    0
    Ações de comentário Permalink
  • Avatar
    Linden Acomb

    Hey Craig,

    As requested, I've added you as a +1 to this request. 

    When we have any further updates, they'll be posted to our changelog at the following location in our Knowledge Base: Phish Alert Button Changelog.

    Thank you for passing on your interest.

    0
    Ações de comentário Permalink
  • Avatar
    Eric Tardif

    +1 also for me. Long time Office 365 client but new to KnowBe4. We cannot justify switching to the PAB due to lost functionality for our users.

    0
    Ações de comentário Permalink
  • Avatar
    Trevor Wilson

    Hey Eric!

    We appreciate you expressing interest and I have added you as a +1 to this request.

    As mentioned before, when we have updates, they will be posted here: Phish Alert Button Changelog.

    Have a great day!

    0
    Ações de comentário Permalink
  • Avatar
    Jose Ponce

    We also use O365 with EOP and ATP.

    +1 also for me

    0
    Ações de comentário Permalink
  • Avatar
    Kurtis Carter

    Hi Jose,

    I have gone ahead and added you and your organization to the request as a +1. When we have updates, they will be posted here: Phish Alert Button Changelog.

    We appreciate you expressing your interest in this feature!

    Have a great day!

    0
    Ações de comentário Permalink
  • Avatar
    Justin Smith

    +1 for me as well. We deployed the PAB and had it forward the emails to our spam reporting mailbox (which O365 scans and ingests into the User Submissions portal). We were disappointed to discover that this does not work when the reported email has an attachment as the PAB unnecessarily attaches both the packaged up .eml/.msg file and any other attachments into the reporting email. Microsoft will only scan emails with 1 attachment, so the PAB should have a setting to only attach the .EML/.MSG file. 

    0
    Ações de comentário Permalink
  • Avatar
    Christian Nostrom

    Hello Justin, 

    Thank you for posting to the community board. I see your point about wanting the PAB to integrate with Microsoft O365 User Submissions portal when the reported email has an attachment. I’ve gone ahead and added you as a +1 to the feature request.  Please keep an eye out on the PAB changelog.

    Thanks,

    Christian

    0
    Ações de comentário Permalink

Por favor, entrar para comentar.