We at IT-Seal train your employees to strengthen the skillset and toolset in your company. For this, our training emails must really arrive in the inboxes of the participants and must not be marked as spam. A prerequisite for this is that we are listed by IT-Seal. Because: Even the ‘dumbest’ spam filter will sooner or later classify our training mails as spam. This is counterproductive. The goal of our training is not to test the protection quality of your spam filter, but to train your staff. And to do so as effectively as possible. So that in the event of an actual attack, your staff will actually react correctly.
Why whitelisting?
An essential part of our awareness training is the sending of targeted phishing e-mails to the participants. By being directly confronted with a dangerous situation in a safe setting, users learn how to deal with phishing e-mails – and how to react correctly in an emergency.
However, this model only makes sense if the training e-mails of the phishing simulation reach the recipients and clicks on file attachments and links are properly counted. If the participating company’s security and filtering systems mark the training emails as spam or do not even pass them through to the participants, they become obsolete. It is therefore important to prepare or configure the systems accordingly.
Whitelisting ensures that emails are not automatically forwarded to junk or spam folders. It also bypasses other automated systems (sandboxes) that mimic user behavior, generate clicks, and thus distort the results being measured.
Why does the customer have to perform the whitelisting (and not IT-Seal as an external service provider)?
If you are planning an awareness training with us, you need to ensure in the preparation that our messages are whitelisted and that our phishing emails can reach the recipient:s that way.
Every company is different. Different servers from different providers are used. We are an awareness service provider. Our focus: the most efficient training possible, can only be achieved if the training is technically flawless. We can only guarantee this if your security systems are set up appropriately. If you have any questions, we will support you with our experience, but we cannot replace your expertise on your own systems.
A solution: If you do not have the possibility to assign a specialist in your company with the whitelisting, then you can call in an external service provider, who is already familiar with your system or can familiarize himself with it in detail.
You can find detailed instructions on whitelisting here.
What can IT-Seal support you with?
We want everything to be configured correctly and to work. Therefore we support you with the setup. On our website you will find instructions for various manufacturers and systems. Plus: We provide you with a whitelisting tool, with which you can send yourself e-mails from our system to check whether they arrive and the sandbox system does not falsify any data.
For your information, IT-Seal is now part of the Hornetsecurity group. This enables us to ensure that our training emails arrive safely without your intervention. However, if you have a more complicated email infrastructure in place, Hornetsecurity is only part of your email security, and you have other systems in place elsewhere, you should always run a whitelisting test. This way you can make sure that everything works.
Do you have further questions about our trainings? Then feel free to contact us. Also try our free phishing demo to get an insight into our trainings.
