Simply and reliably report phishing attempts during operation. And all at a great price!
The LUCY webcast “How to install, configure and use the LUCY Phishing Incident Plugin” for MS-Outlook briefly shows the following steps:
- Configuration of the’ Phishing Button’.
- Download and installation of the feature in Outlook (c)
- Usage: A phishing simulation mail is reported using the plugin
- Short insight into the LUCY Threat Console and the calculation of the LUCY Risk Score.
The Phish button works under MS-Windows / Microsoft-Outlook (32 and 64 BIT). The add-in also runs under MS-Outlook for Apple Mac and Office 365 (c) is also supported. Availability and Costs: The basic functionality of the alarm button is already available with the cheapest commercial version UNLIMITED. You can install the button as often as you want with STARTER Edition.
Availability and costs: The basic functionality of the alarm button is available with the basic commercial edition. You can install the button as often as you want with the’ Starter Edition’ (unlimited!).
1) Configuration of the’ Phishing Button’.
Log in to LUCY and go to the menu item “Incidents” and then click the button Settings –> Plugin Settings.
- There you can maintain the “e-mail recipient” (where the e-mails are to be sent when the end user clicks on the button).
- The “Thank You Message” contains the text that is returned after the user has clicked the button.
- The “Thank You Message for LUCY Emails” is the message that comes up when the user submits an email using the Phish-Alarm button, in the case he’s submitting a LUCY Phishing Simulation Email Message.
- With “Button Message” you enter the text that is shown on the button itself.
- And Subject: It’s the subject line with which the messages are received by the administrator.
When selecting the transmission methods, the following options are available for selection (multiple answers possible)
- Submission via HTTP (transmission via email)
- Submission via SMTP (transmission via email)
- “Use SMTP for receiving incident reports on Lucy “: Check this option if you want the Outlook Plugin to send a copy of the reported phishing mail to LUCY (into the Incident Console). The mails from phishing simulations are filtered out.
- “Use smtp for receiving incident reports on LUCY” – If this option is enabled, LUCY Server assumes that the server needs to intercept the emails sent by the plug-in (add-in) via SMTP. The local LUCY Postfix server is configured accordingly. All received emails are added to the Incident Console. If you do not enable this, even if the email points to Lucy, nothing happens – the server does not wait for messages via SMTP.
2) Download and installation of the feature in Outlook
The plugin can be downloaded directly from the Incident console. To do this, a *. msi installation file is created when you click on it. If changes are made in the configuration of the button, the *. msi file has to be downloaded and installed again!
3) Use: A phishing simulation mail is reported using the plugin
When the user submits a LUCY phishing email, he is immediately informed in Outlook that the user has reported a phishing simulation email. This frees the administrator from the triage between’ simulated phishing mails’ and’ real external mails’.
4) LUCY Threat Console & the calculation of the LUCY Risk Score.
From the LUCY “Business Edition” onwards, the’ LUCY Email Risk Factor/Score’ is available. Here, risk scores for the mails submitted are calculated with the help of 4 different rule sets:
- Rules for header analysis
- Rules for Sender Domain Analysis
- Rules for the analysis of message content (body)
- Own, individual rules
This results in a score of 1-10. That’s it 🙂 We wish you a lot of fun with LUCY Server!