Phish Opened Without Reporting Communication

Only you know the best voice and messaging to share with your employees, but this email template can act as a starting point. Additionally, consider checking out our phishing infographics for editable templates that can be shared with your employees.

Dear [Employee Name],

Recently, our organization conducted a phishing simulation exercise, and we wanted to commend you for not clicking within the email! In the future, the ideal course of action would be to also report suspicious emails so our Security Operations team can investigate. Reporting emails helps reinforce your role as our best line of defense against cyber crime.

Reporting these incidents is crucial for the following reasons:

Continuous Improvement: Reporting the phishing simulation provides valuable feedback to enhance our training programs and understand what real-world vulnerabilities pose the biggest threats.

Incident Response Readiness: Reporting incidents allows us to refine our incident response procedures, ensuring we are well-prepared for real phishing attacks. When a real phishing email is reported the Security Operations team can proactively mitigate threats to our organization.

We view simulated phishing emails as a training opportunity for us to collectively learn, improve, and enhance our cybersecurity hygiene. Please remember to report any suspicious emails promptly. Your participation plays a vital role in protecting our organization and your colleagues. As a reminder, our report button is located [INSERT LOCATION] as seen in the screenshot below.

[INSERT SCREENSHOT]

Thank you for your commitment to our organization's security.

Phish Opened Without Reporting Communication

This email template can be used as a starting point to communicate with your employees if they are identified in Unify as having opened a simulated phishing email without reporting it.