Create a Spear Phishing Email Template

Spear phishing is the act of sending a scam email to a specific and well-researched target audience while pretending to be a trusted sender.

As opposed to regular phishing, where an email is sent to a large number of individuals with generic and no targeted information. Rather, a spear-phishing email, is well researched with names, roles, trusted company names and branding to catch individuals out. If a single individual engages with a spear-phishing email, it can compromise the entire organisation. 

It is important to test your organisation using spear-phishing templates to ensure they are always thinking about cyber security and reporting malicious emails. 

This article will cover how to use the spear-phishing feature to send a specific template to a select user/s or group. 
It is recommended that you create your own template that is tailored to your organization. This allows you to also make it as sophisticated as you want, however, you are still able to clone and use one of the existing templates within the portal.

Create a Spear Phishing Template

1. Go to the Email Templates tab and select Templates > New Template > Spear Phishing
2. Choose to Upload a file or Create From Blank Template
3. Edit Template Title, From, Subject, Attach file (optional), Description (optional), and craft your message with the editor via Visual, HTML, or Plain Text
4. Share the template to your zone (Share Template) and further customise your template by using the menu on the right-hand side of the screen. Options for customising your spear phishing email template:
   
   • Type - Type of email template you would like to create.
      
   • QR Code - This is a method used to test staff into scanning the code. For more details, please visit Email Template : Add a QR Code – Phriendly Phishing.
     

• Credential Capture - This is a method used to steal account names and passwords. For more details, please visit Email Template : Add a Credential Capture – Phriendly Phishing.
  

• Redirect URL - Responses from learners will be sent to this address if they have any questions about their training courses. For more details, please visit Training Emails Configuration: Reply To field – Phriendly Phishing.
  
• Micro Course - Select content related to this email template for learners to be trained on if they click on a link. For more details, please visit Customisable Microlessons – Phriendly Phishing.
  

• Domain - Here you can see all links and emails used in your template
  

• Personalise - Personalise this template with any property that exists on a contact record (e.g. name or email)
   Note: If you populate attributes in your Active Directory synchronisation for learners list, then you can use those fields to customise the email template in more detail.  
  

• Share Template - Set which zones can use this template. You must select at least one zone to activate the template.
  

• Spear Phishing - This allows you to create a Spear Phishing block so that you can send this template to select learners
  

Once finished you have the option to Preview and Test, Save, and Publish the template.

 Now that you've created a new spear phishing email template, schedule your spear phishing campaign.

Explore Phriendly Phishing's award-winning course catalogue here!