Overview
Barracuda PhishLine trains users to understand and respond correctly to the latest phishing techniques, recognise subtle phishing clues, and prevent email fraud, data loss, and brand damage. It transforms employees into a powerful line of defence against damaging phishing attacks.
This versatile, scalable, cloud-hosted SaaS solution includes hundreds of email and landing-pages templates, updated based on threat trends. Levelized training and gamification make it more effective by engaging employees.
Defend Your Business Against Social-Engineering Attacks
Fight phishing and other potentially devastating attacks that can slip through security gateways. These evolving and sophisticated attack techniques, designed to fool employees, put your business at risk for data loss, financial fraud, and embarrassing exposure. Transform employees into a layer of defence with Barracuda PhishLine.
With PhishLine, you guard against every facet of social-engineering threats with continuous simulation and training for employees. Expose them to the latest attack techniques, and teach them to recognise the subtle clues and help stop email fraud, data loss, and brand damage. Embed learning into your everyday business processes with customized simulations that test and reinforce good behaviour.
Only PhishLine helps you guard against a range of threats with patented, highly-variable attack simulations for multiple vectors, including phishing, smishing, vishing, and found physical media.
Customize Training to Make it Engaging and Relevant to Your Users
PhishLine’s simulation and training content is easy to use and is fully customizable. You get a wide variety of materials: Choose from hundreds of easy-to-use simulation templates, landing pages, risk assessment surveys, and engaging multi-lingual training content in the online PhishLine Content Centre Marketplace. Materials can be used individually or integrated into simulated phishing and social-engineering campaigns. New simulation and training content is added daily, to reflect the most recent threats and training resources available to help protect your business.
PhishLine lets you deliver training as soon as the need is identified, using a built-in workflow engine. For example, you can use a landing page for in-the-moment training when someone performs an unsafe action as part of a mock phishing campaign. You can also send training invitations to specific employees based on their past actions and risk profile. Plus, you can schedule training invitations and post on-demand training on your intranet.
PhishLine makes it easy for employees to instantly report suspicious emails to your help desk or incident response team. The built-in Phish Reporting Button is a simple, powerful solution that gives you complete control over the entire process at all times.
Identify Human Risk Factors in a Non-Threatening Manner
Do employees truly understand that information security policy they signed? Did a recent information security announcement have any impact on their perceptions of risk? Is your security awareness training addressing the real needs of employees, from their perspectives?
These are some of the questions addressed by PhishLine’s Risk-Based Survey module in a thoughtful, perceptive, and non-threatening manner. These unique, qualitative, risk-assessment capabilities allow for discovery in the “voice of the employee.”
Back-end analysis capabilities lead to a unique and powerful assessment tool that quantifies risk by impact and likelihood scores. You can objectively evaluate your organisation's human-risk factor based on meaningful feedback from your employees.
Protect Your Business With Updated Content That Guards Against The Latest Threats
With PhishLine, there’s no need to recycle the same old training and testing materials. The Content Centre Marketplace is constantly updated by security experts to reflect the newest threats and the training resources available to protect your business. Engage employees–and keep their interest–with a wide variety of choices and materials designed to fit your corporate culture.
In addition, PhishLine provides Click Thinking™, a monthly bundle of content updates. Each update is aligned around a hot topic, and includes a new training video, email template, and landing page. A monthly newsletter, infographic and intranet content also help keep your training program fresh and on topic.
There’s no need to piece together your curriculum. PhishLine experts have created phishing tests—from methodologies, to lures, to landing pages—that complement the content of our partners’ training materials. This means there is one style, one message, one way to make things happen from start to finish. Providing a fully-integrated, social-engineering solution saves your business time and money.
Automate Your Anti-Phishing Program
Execute consistently to stay ahead of hackers.
Update address books automatically
The PhishLine Workflow Subscription can save you time while improving your address book accuracy. PhishLine can automatically merge data from multiple sources, eliminating the need to manually export and import address books for each employee.
Merge risk-based attributes from multiple sources
The PhishLine Workflow appliance can also merge risk-based user attributes from other applications and databases and then use this information to trigger testing and training campaigns based on events. For example, you can integrate PhishLine into your HR system to automatically trigger a “new hire training campaign” for new employees.
Teachable Moments that Matter™
By integrating with third-party databases such as LDAP, PhishLine can automatically trigger the delivery of security awareness content based on actual events. For example, a simple password reset request to the help desk can now become an immersive moment in which users can receive training and testing to ensure they are applying best practices.
Automate Incident Response and Get Access to Threat Insights
No email defence can protect against every email threat one hundred percent of the time. And when malicious email ends up in a user’s inbox, you need to address the problem quickly. Slow, inefficient manual incident response processes too often allow the attack to spread further.
Barracuda Forensics and Incident Response automates incident response and provides remediation options to address issues faster and more efficiently. Admins can send alerts to impacted users and remove malicious email directly from their inboxes with a couple of clicks. Discovery and threat insights provided by the Forensics and Incident Response platform help to identify anomalies in delivered email, providing more proactive ways to detect email threats such as email security awareness and phishing simulation training.
| Content | |
|---|---|
| Hundreds of Email Lure Templates, Landing Pages and Domains | |
| PhishLine Content Centre Marketplace | |
| Customised Templates | |
| Testing | |
|---|---|
| Patented Multi-Variable Attack Simulations | |
| Smishing (SMS/Text) | |
| Vishing (Voicemail) | |
| Found Physical Media (USB/SD Card) | |
| Advanced Threat Simulation Features | |
| Reporting | |
|---|---|
| Phish Reporting Button | |
| Robust User Attributes | |
| Extensive Reporting and Metrics | |
| Data Loss Prevention (DLP) | |
| Education | |
|---|---|
| Program Gamification | |
| Risk-Based Surveys | |
| Bonus Security Awareness Training Materials | |
