Multistage Attack Creation
A Multistage Attack allows you to create a more sophisticated simulation by chaining multiple landing pages together. This is ideal for testing user resilience across different levels of interaction—such as moving from a credential entry page directly into an educational module or a follow-up assessment.
Prerequisites
Section titled “Prerequisites”- Landing Pages: All stages of your attack (e.g., the Login Page, the Micro-learning module, and the Quiz) must be created and saved in the Content Builder before you begin.
Step-by-Step Configuration
Section titled “Step-by-Step Configuration”The Multistage Wizard follows a similar flow to the standard campaign, with a specialized configuration for your “Stages.”
- Campaign Identity Give your campaign a descriptive name. Tip: Include “Multistage” in the title for easier reporting later.
- Target Selection Select the Target Group(s) that will receive the initial simulation email.
- Email & Domain Setup Choose your Phishing Template (the “hook”) and the Custom Domain that users will see along with the sender name.
- Configure Stages & Data Handling This is where the flow differs from a standard campaign. You will now define the sequence of events:
- Stage Order: Use the selector to add your pre-created landing pages in the desired sequence.
- Example A:
Login Page→Micro-learning Content - Example B:
Login Page→Micro-learning Content→Quiz
- Example A:
- Data Storage: If your first stage includes a login form, specify how the system should handle the data (Skip Recording, Store in Plain Text or Encrypt and Store).
- Stage Order: Use the selector to add your pre-created landing pages in the desired sequence.
- Schedule & Launch Choose to launch the campaign immediately or schedule it for a specific window to optimize engagement.