Critical configuration information to ensure the successful implementation of our Phishing Simulations
Without completing this step, Google's scanning systems will likely regard phishing simulation emails as spam or phishing and block them. At the same time, it's also important not to undermine the inbuilt security features of Google Workspace and Gmail, which could allow an attacker to spoof the domain names used by our phishing simulator.
To ensure that Secure Schools Phishing Simulations are successful and safe, the school or trust's email environment must be configured to recognise the emails as trusted phishing simulations.
- Gmail takes no action for Secure Schools Phishing Simulations
- Keep SPF, DKIM and DMARC controls in place
- Keep malware controls in place.
Allow listing Secure Schools' Phishing Domain
From the vertical menu, click on Apps, select Overview from the drop-down list, and then select Google Workspace.
Step 2: Select Gmail
Step 5: Add a description (e.g., Secure Schools Phishing Domain).
Click on Create or edit list.
-
emaildistributionhub.co.uk
-
notificationdistributionhub.co.uk
-
emaildistributionhub.com
-
notificationdistributionhub.com
-
emaildispersalhub.co.uk
-
emaildispersalhub.com
-
maildispersalhub.com
-
notificationdispersalhub.co.uk
-
notificationdispersalhub.com
Please note that the above list is regularly updated and may include additional domains not included in the screenshots.
Step 10: Select the address list you created.
Step 13: Navigate to the Content Compliance section.
Step 14: Click Add a rule.
Step 15: In the Email messages to affect field, select the Inbound and Internal - receiving check boxes.
Step 16: Under the Expressions tab, click the first drop-down menu.
Step 17: From the first drop-down menu, select if ANY of the following match the message and click Add.
Step 18: Update the settings in the Add expressions that describe the content you want to search for in each message area. For more information about these settings, see the screenshot and list below:
i) From the first drop-down menu, select Advanced content match.
ii) In the Location field, select Full headers.
iii) In the Match type field, select Contains text.
iv) In the Content field, enter the header text.
(The Secure Schools header is X-PHISHTEST)
v) Click Save.