Phishing Campaigns

Owned by Richard Vesely
Last updated: May 17, 2024 by jurajkmo
3 min read

Testing Phishing Campaign (Campaign)

Campaign is an actual campaign performed on your users.

Each campaign is defined by:

  • Campaign Name defined during creation.

  • User Group on which the phishing campaign will be performed.

  • Campaign Template that will be used for the campaign.

  • Timeframe when the campaign will run selected during campaign creation.

  • Sending Mode how the blocks will be distributed during the campaign.

  • Awareness Mode if a redirect to awareness page will be used.

Campaigns can be created and managed in Campaigns section in LazyPhish App.

 

Campaign can have following statuses:

  • Scheduled - Campaign planned to start on selected start date.

  • Running - Campaign is currently running and testing.

  • Paused - Campaign is paused including testing.

  • Finished - Campaign successful finished.

Active Campaign is any campaign which is in status Scheduled, Running or Paused.

Campaign Template

Campaign Templates are predefined templates that are used for Testing Phishing Campaign. These templates consists of a predefined set of Campaign Blocks in specific order. Each campaign template is defined by template name, language, description and ordered blocks.

Ordered blocks is list of specific blocks ordered within the campaign Template.

List of available campaign templates is in Campaign Templates Section in LazyPhish App.

Campaign Template Block (Campaign Block)

Campaign Blocks are basic building blocks of campaign templates.

Each block consist of:

  • Name

  • Description

  • Email Template

  • Landing Page

Campaign Sending Mode

Sending mode is a mode in which the campaign blocks are combined and scheduled during the campaign. There are two modes available:

  • Randomised (Recommended) - Campaign Blocks are distributed randomly during the campaign for random batches of user. This ensures that users can not share easily their experience with phishing they recently received. We believe that this approach is more effective and reporting is more accurate.

  • Block by Block - Campaign Blocks are distributed in order as they are presented in the campaign template overview. Blocks are performed one by one in waves.

Campaign Training Part

If enabled user will be redirected to a training portal after a successful phishing attack, i.e. when a user clicks on a phishing email without landing page or if a user submits data on a landing page.
The training process consists of three parts:

  1. Introduction - User is acquianted with the fact they fell for phishing simulation and is asked to spare a few minutes to go through a quick training process.

  2. Training - User is led through the main principles of cyber awareness and is thought how to prevent falling for social engineering attacks in the future

  3. Quiz - Finally, the user is asked to fill out a short quiz to test their newly acquired skills.

If the user completes the whole process, it will be recorded in the LazyPhish reports.