FAQ

Get answers to all of our Frequently Asked Questions!
Lora Thinking about FAQ Questions

Learn More About:
PhishFirewall

PhishFirewall offers a variety of features, analytics, and resources that we want to ensure all of our clients can fully take advantage of.

Security Awareness Training That Actually Changes Behavior- join us on our mission to secure the digital landscape.

Are You Ready to be
Bigger Better & Faster

Thanks, We will Reach Out Soon To Help You Get
‍Bigger Better & Faster

Oops! Something went wrong while submitting the form.
Adam Interacting with Phishfirewall's AI Cyber Coach Lora
Support

Frequently asked questions

Everything you need to know about Phishfirewall!
What is a Phishing Simulation?

Phishing Simulations are campaigns in which fake “phishing” emails are created based on typical phishing attempts organizations regularly find themselves facing. They are most commonly delivered as part of a security awareness training program and provide the best results for preparing people for a wide range of cybersecurity threats.

How are Phishfirewall's simulations Different?

1.) Leadership Difference Our CEO Joshua is an ethical hacker, and Our COO is a 30 year CIA veteran. They know from their experience on the other side what is needed!
2. Easy Integration We easily integrate with any tech stack, and can be ready to use right away.
3. Automated Training We utilize AI technology to deliver research backed micro learning experiences to your staff based on their specific risk profile. So, you always know your employees are getting the support they need!
4. Advanced Analytics Our metrics can be viewed at anytime, and are not campaign based. You get constant, Realtime, and holistic view of your company's susceptibility to phishing attacks whenever you need it with our analytics dashboard.
5. Non-Punitive Our Phishing Campaigns, are gamified, and not designed to be used as a tool to identify problematic employees. Our System works by identifying each individuals susceptibilities and delivering training based on our AI's understanding of them. That way its not punitive, but encouraging, and helps the user actually fill in the gaps in their understanding.

Why should companies use phishing simulations?

Phishing simulations are important because they keep the company informed on two fronts:

1. Simulations keep the employees informed on phishing threats and help them stay vigilant in spotting threats in their inbox.
2. Simulations show the company who in their organization has the highest risk of being phished and it shows what types of attacks they are most vulnerable to….or at least they do if the company is using PhishFirewall.

That kind of education and intelligence ensures that companies can very quickly adapt to the way they handle real threats.

How Do i View My Organizations Phish Click Rate?

Your Phish Click Rate can be found In your Back office, which you can log into here.

Then You will find User Analytics on the left hand menu.

From that you will see your organizations Overall Phish Click Rate on the Executive Summary Tab.
If you swap over to the Breach Analysis Tab , you will find a graph showing your Phish Click rate on a month by month basis.

Both can be filtered based on Tenant, Location, and Department.




Executive Summary



Breach Analytics


How Do I know if Users Are Actually Using the Training?


Your Phish Click Rate can be found In your Back office, which you can log into here.

Then You will find User Analytics on the left hand menu.

From that you will see your organizations Engagement Rate on the Executive Summary Tab.

If you swap over to the Education Analytics , you will find a graph showing your Engagement Rate based on Location, or Department.




Executive Summary



Engagement Analytics


Can I View Individual Users, and their Statistics?

Of Course, You can find that information in the User Report Card.
You can find User Report Card In your Back office, which you can log into here.
 You will find User Analytics on the left hand menu.
From that you will navigate the the User Report Card Tab.

Executive Summary



Where can I find daily activity?

Of Course, You can find that information under User Actions.
You can find User Actions In your Back office, which you can log into here.
 You will find User Actions on the left hand menu. This shows you the daily activity, for any 31 day window.

User Actions


Can I download the data to preform my own analytics?

Of Course, You can find that information under User Actions.

You can find User Actions In your Back office, which you can log into here.

 You will find User Actions on the left hand menu.

From that you will Select the User Actions Tab.

User Actions


How do I add additional Admins?


1.  Go to admin.phishfirewall.com and sign in
2. Go to the top right-hand corner and select the dropdown by your name
3. From that you will Select  details.

4. Select + Invite Admin

5. Enter The New Admins Email Address

6. Select the Role, Either Admin for access to all Tenants, or Tennant Admin for access to specified Organization.

NOTE: The Admin role has access to all sub-tenants, the Tenant Admin will only have access to the Tennant selected.

7. If you want the Admin to have the ability to manage the Sync Connectors, ensure that new sync access is enabled, leave unchecked if they just need access to the Reported Phishing tool, or Analytics.

8. Select the associated organization for the Admin or Tennant Admin.

9. Click Send Invite, and we will send instructions for account setup to the supplied Email.

You are done!

How do I modify Admin access?


1.  Go to admin.phishfirewall.com and sign in
2. Go to the top right-hand corner and select the dropdown by your name
3. From that you will Select  details.

4. Select the Gear Icon next to the admin that you want to modify, this will provide you access to modify the admin role.

Note: You will need to contact Supprt@PhishFirewall.com To change the Account Owner.

How do I create a support ticket?


1.  Go to admin.phishfirewall.com and sign in
2. Go to the top right-hand corner and select the dropdown by your name
3. From that you will Select  Customer Support.

4. Then You will select Priority, describe the issue, and attach any relevant files.

5. Then Click Submit. You should expect a response within 1-5 business days from customer support, based on the priority listed.


How Do I manage The Reported Phishing Emails?


1.  Go to admin.phishfirewall.com and sign in

2. Select Reported Phish from the Left Side Menu

3. From that you will see all of the reported emails, that have not been categorized.

4. Click view details next to the desired Email to Open up an expanded view, Now You will be able to see the important, details related to the sender, and the links that are contained.

5. You can Click The Preview Snapshot Email, to view an image of the rendered email.

6. You can select the view Raw File to bring up a file containing the code of the Email, broken down by headings with the ability to copy sections.


7. Now You Will Select Phish, Not Phish, or Spam.

Phish - If the email appears to be malicious.
Spam - If the email appears to be Generic Spam Marketing Content.
Not Phish - If the email appears to be not malicious, or spam.

Based on your response, the end user will receive an email that informs them of the results. It will send a short informational email to help identify Spam, or other non-malicious emails if not a phishing email. And, it will congratulate them for helping protect your organization if they correctly reported a malicious email. This is all done autonomously.



Support

Admin Portal Explained

Everything you need to know about Phishfirewall's Admin Portal!

Administration

Sync

Sync

This tab is used to sync your user data to PhishFirewall.
You can use Azure, Google Workspace, or a CSV Upload.

User Database

User Database

This tab can be used to add or remove users individually, or change their language preferences.
All you do is select the users you want to assign a new language, then select actions>Change Language.

Groups

Groups

This tab is used to assign users to Role or Compliant specific trainings like Finance, HR, HIPPIA.

You can upload a CSV for each role, or select individual users.

Exclusions

Exclusions

This tab is used to exclude specific Users, or Phishing Simulations from being Included.

Users Activity

User Actions

User Actions

This tab is a useful window that will give you a view of individual user actions for any given month.

Mailing History

Mailing History

This tab provides a full history of all emails that our system has sent. to your users.

User Analytics

Executive Summary
Breach Analysis
Phishing Analytics
Education Analytics
User Report Card
The Executive Summary Provides a an easy to understand overview of the most important statistics, and can be filtered by Tenant, Department, and Location. These statistics are based on your organizations performance from your first enrolment. This is a great way to view the overall impact that PhishFirewall has had on your organization!
The Breach Analysis Tab, provides you with an over view of the average Phish Click Rate over time. The Baseline is used to compare against the average across all users of PhishFirewall, to help you understand how your organization compares. It can be filtered by department, location, and tenant. This view provides a comprehensive understanding of the overall trend of your organizations culture around security.
The Phishing Analytics tab Provides a quick overview of how each location, and Department are doing, to show you the best preforming department, and location.
The Education analytics helps you understand what departments, and locations are most engaged with PhishFirewall's training.
The User Report Card allows you to look up any individual user, this can help you understand exactly how each individual is preforming.

Phish Reports

Reported Phish

Reported Phish

This is where your IT Team can review, and Follow up with reported Phishing attempts.

Intergrations

API Manager

API Management

This is where you will get access to your API Key To integrate our analytics into your reporting tools. The Account Owner is the only individual who can access this page.
Get API Key

Phish Emails

Email settings

Spear Phish Setup

Company Logo
Email Signiture
URLS

Administration

API Manager

API Management

This is where you will get access to your API Key To integrate our analytics into your reporting tools. The Account Owner is the only individual who can access this page.
Get API Key

Users Activity

Phish Reports

Intergrations

Phish Emails

Analytics Explained

Measurements & Representation

Have a question about the specifics of the metrics we use, or what they represent for your organization?
Filter Dimensions
Phishing Meterics
Education Metrics
Tennant
Tenants are different organizations managed by a Managed Service Provider (MSP), or different organizational units within a company. They are defined by their specific instance of Microsoft Azure, or Google workspace.

This is a powerful dimension, especially for MSPs as it allows them to have one login, and manage all of their clients. It also helps larger organizations keep all of their data centralized.
Department
Department based analytics are based on the specific department assigned to the user as dictated by the azure connection, google workspace, or CSV upload.

Department specific data can help provide meaningful insights about each department. Which can be used to make decisions, especially related to access control.
Location
This is using data based on what users are assigned a specific location, as specified in your Microsoft azure, google workspace, or CSV Upload of User Data.


Location specific data can help you make judgements about how secure each location is, however it can also be used to help identify locations with a stronger security culture.
Total Phishing Emails Sent
This is the total number of Phishing Emails sent.

This statistic is useful when wanting to look at the volume of phishing simulations your employees are receiving, and can help you contextualize the Phish Click rate.
Total Phish Clicks
This number is the total number of Phishing emails that your employees opened, and clicked a link inside of.

This number is useful to help contextualize the Phish Click Rate, and help you understand the overall risk of phshing.
Phish Click Rate
Phish Click Rate is Measured by taking the Total Phish Clicks , and Dividing it by the Total Phishing Emails sent. That tells you the chance a user will actually click a link inside of a malicious email.

Phish Click Rate is a critical metric to help your organization understand the overall risk your company faces when it comes to data breaches. Over 90% of ransomeware attacks start with Phishing, and as such this statistic can be a powerful indicator of your organizations overall security.
Reported Phish Count:
This Number Tells you the total number of Phishing emails reported with the Phish Report Button.
Engagement Rate:
The Engagement rate measures how engaged with the content the user is, each training has multiple educational engagements, and they are weighted accordingly. If you open an email, that counts as an engagement, however watching a video fully counts as significantly more of an engagement.
Educational Interactions:
The Educational Interactions counts the total number of educational engagements, which can include opening an email, watching a full video, and answering the question.

Still Got Questions?

Can’t find the answer you’re looking for? Just ask our team, and we will be happy to help!
Get in touch