Chapter 8: Reporting

In the Reporting module, you can generate reports for phishing simulation campaigns and training & awareness campaigns. Reports are a great resource for verifying the effectiveness and value of your BullPhish ID campaigns.

In this article, business reports and user reports are described.

Business reports

A business report includes campaign statistics for the modules (training, phishing) for which an organization has a subscription. Reports include data for in-progress and completed campaigns.

Business reports are generated monthly and quarterly. Monthly reports are generated the first three days of the following month and quarterly reports are generated the first three days of the following quarter.

The months included in each quarterly report are:

  • Q1: January, February, and March
  • Q2: April, May, and June
  • Q3: July, August, and September
  • Q4: October, November, and December

The type of information included in the monthly and quarterly reports is the same, the only difference is the time frame the data represents. The sections that comprise each report are described below.

Summary

The Summary section shows Phishing Simulation campaign statistics on the left side and Training & Awareness campaign statistics on the right side.

The Phishing Simulation campaign heading identifies the number of phishing campaigns that were conducted and the number of emails that were sent during the report time frame.

The Training & Awareness campaign heading indicates the number of training campaigns that were conducted and the number of trainings that were assigned during the report time frame.

Below each heading, the percentage for each status is conveyed. Statistics for the current time frame are presented in the top bar for each status, while the bottom bar shows results from the previous time frame. The amount the status has changed (percentage) from the last monthly or quarterly report is shown as well.

The legend at the bottom of the section indicates the months in the current time frame and the months from the previous time frame.

Monthly business report example

Quarterly business report example 

Status descriptions

The phishing status values are described below:

  • No Action taken: The percentage of users who did not open the phishing campaign emails they received.
  • Opened Email: The percentage of users who opened the phishing campaign emails but did not click any links (i.e., landing page link, attachment).
  • Clicked Link: The percentage of users who opened the phishing campaign emails and clicked a link (i.e., landing page link, attachment).
  • Submitted Data: The percentage of users who opened the phishing campaign emails, clicked the link to the landing page, and submitted data (e.g., login credentials).
    Note: On the phishing landing page, if a user clicks any link other than the submit button, the status of the clicked link is not tracked. The submit button is the only link tracked.

The training status values are described below:

  • No Action taken: The percentage of users who did not open the training campaign emails they received.
  • Incomplete: The percentage of users who did not complete the training course.
  • Failed: The percentage of users who finished the training course but failed.
  • Passed: The percentage of users who finished the training course and passed.

Phishing Simulation Details

The data in the Phishing Simulation Details section helps your organization identify and measure the phishing attack vulnerability level within your organization.

In addition to displaying the percentage for each status, the graph identifies the number of users for each status, as shown in this monthly report example. 
 
In this section, status statistics are broken down and displayed at the campaign level. The Campaigns column lists the campaign name and kit name for each campaign. Also, the groups for which the campaign applies are identified.

Phishing details 2.png

Phished Users

The Phished Users section lists the users that either opened the phishing email, clicked a link, or submitted data. 

Training & Awareness Details

The information in the Training & Awareness Details section helps your organization track training compliance and identify courses where employees may have had difficulty.

In addition to displaying the percentage for each status, the graph identifies the number of users for each status, as illustrated in this quarterly report example.

Status statistics are broken down and displayed at the campaign level. The Campaigns column lists the campaign name and course name for each campaign. The groups for which the campaign applies are identified as well.

Users by Risk Level

This section lists each user by status. 
 

User reports

A user report contains campaign status information for each user to which a campaign applies. The report data is based on campaigns that were in progress or completed during a selected date range. Separate phishing and training user reports can be generated and downloaded as a CSV file.

The first and second columns in a user report identify the names and email addresses of each target, respectively. A column is displayed for each campaign in the report. Each campaign column heading identifies the name of the phishing kit or training course, the campaign name, and the date & time the campaign was created. The time zone is abbreviated (e.g., PST) if an abbreviation exists. If there is not an abbreviation, the full name of the time zone is displayed.

User report example

Phishing report

A phishing report includes the campaign status for each target. The status values are:

  • Sent: The phishing campaign email was sent to the user but the user did not open it.
  • Email Opened: The user opened the phishing campaign email but did not click any links (i.e., landing page link, attachment).
  • Clicked Link: User opened the phishing campaign email and clicked a link (i.e., landing page link, attachment).
  • Submitted Data: User opened the phishing campaign email, clicked the link to the landing page, and submitted data (e.g., login credentials)

Note: A hyphen (-) indicates the user was not a target in the campaign.

Phishing user report example 

Training report

A training report contains the campaign status for each target. The status values are:

  • Sent: The training campaign email was sent to the user but the user did not open it.
  • Opened Email: The user opened the training campaign email but did not click the link to the training portal.
  • Opened Training: The user opened the training campaign email, clicked the link to the training portal, and opened the training course.
  • Completed Training: The user opened the training campaign email, clicked the link to the training portal, and finished the training course with a Completed or Failed status.

Note: A hyphen (-) indicates the user was not a target in the campaign.

Training user report example 

In the Reporting module, you can export reports and automate reports. For more information, refer to the following articles:

 

Revision Date
Business report content revised. Added User report content. 10/19/23
Phishing Status descriptions: Added Note: Submit button is only link tracked on landing page. 1/17/24

 

Have more questions?

Contact us

Was this article helpful?
0 out of 0 found this helpful

Provide feedback for the Documentation team!

Browse this section