This article covers common questions about Infosec’s PhishNotify add-on for Outlook or Google Mail.
| Question | Answer |
|---|---|
| What is PhishNotify? | PhishNotify is an add-on for Outlook or Google Workspace (Gmail) that allows users to report PhishSim emails or other suspicious email messages. The messages can be reviewed in Infosec IQ or shared with another email address. |
| What benefits does PhishNotify provide? | PhishNotify provides an easy way for your users to report suspicious emails. PhishNotify also gives admins visibility into learners’ ability to recognize potential threats and allows you to gauge the effectiveness of your PhishSim campaigns. |
| Does PhishNotify allow emails to be reported to another tool to be integrated into my existing processes? | Yes. Any email address can receive a notification when a user reports an email with PhishNotify. The reported emails will be attached to the notification in either .txt or .eml format. |
| What happens if I run a PhishSim campaign without PhishNotify? | Without PhishNotify, learners will be unable to report PhishSim messages back to Infosec IQ and there will be no way to see statistics on identified simulations. Additionally, if learners report a PhishSim email to another product they may get marked as “phished” in Infosec IQ, so phish rates may also be unreliable. |
| Can I just report PhishSim emails to Google, Microsoft, Proofpoint, or any other vendor? | No. Security vendors have a zero-tolerance policy for suspicious emails. All unknown email messages, including phishing simulations, are treated as real threats. Other phishing simulation providers only recognize their own emails, so if Infosec IQ PhishSim emails are reported to another tool they may be subject to additional scanning. |
| Can you contact all the other security vendors and give them your domains, so they won’t scan your emails? | Unfortunately, no. Security vendors do not have processes for exempting domains that belong to other security companies. Domain ownership isn’t permanent, so security vendors would need to continuously re-verify domains. |