News: Feature update

Overview

Phishing attacks use multiple tactics to appear legitimate, the senders email address and domain name used is arguably one of the biggest tale-tale signs. So, when sending training emails related to your Phish Threat campaigns, you want users to know it’s you, and that it’s safe to click.

That’s why we’re pleased to release the ability for customers to customize the full email address used in the delivery of training related emails to end users, rather than “Sophos training@staysafe.sophos.com”

These training-related emails include:

Enrollment emails - only used in training campaigns





Training "reminder emails” - used in all campaign types





Caught emails - only used in attachment campaigns

How to customize your sender address

You’ll be sending from your own domain in no time at all, with a simple three step process:

Open Sophos Central and navigate to the Phish Threat section and a new page listed in "Settings" called "Automated Emails" Select the “Use Custom, Verified Sender Email” toggle and enter your chosen sender name and email address (ensure you own the domain you enter) You’ll then receive a verification email to the email address entered in step two. Simply click the link to verify it’s you

Once verification is complete (this will take a moment), you can begin building Phish Threat campaigns that use your custom email address.

This allows you to effectively train users on phishing tactics, without needing to explain why training emails are coming from Sophos.

Remarks