This section focuses on the Smishing simulation, part of the Phishy Simulation Module, which trains employees on recognizing and responding to SMS-based phishing threats.

Introduction

The Phishy Simulation Module is designed to help organizations test and enhance their employees’ responses to various types of phishing attacks. Smishing, or SMS phishing, involves deceptive text messages to extract sensitive information from the recipients.

Smishing Simulation

Smishing is an essential part of our simulation training that involves:
  • Realistic SMS Scenarios: Employees receive text messages that mimic real smishing attempts to provide hands-on experience.
  • Customized Threats: Each simulation can be tailored to reflect the specific threats that an organization might face.
  • Immediate Feedback: Participants receive immediate feedback on their actions to help them learn from their mistakes and improve their awareness.

Getting Started with Smishing Campaigns

To create an effective Smishing campaign, follow these steps:
  1. Campaign Setup: Define the name, domain, objectives, and scope of your smishing simulation campaign.
  2. Template Selection: Choose an SMS template that mimics the smishing styles your organization is likely to encounter.
  3. Landing Page Selection: Design landing pages that will capture the actions taken by employees during the simulation.
  4. Target Group Selection: Identify the employee groups who will participate in the simulation.
  5. Send Settings Configuration: Set up the phone numbers and timing for the SMS messages that will be sent during the simulation.
Refer to the following resources for detailed information about setting up and running Smishing simulations:

Campaign Setup

Learn how to set up your Smishing campaign

Template Selection

Choose and configure SMS templates

Landing Page Selection

Select and design landing pages

Target Group Selection

Select target groups for the simulation

Send Settings

Configure SMS send settings
Regular training and awareness are crucial in defending against smishing attacks. Ensure your team is prepared by conducting regular simulations.