Frequently asked
questions

Phished sends fully automated, AI-driven phishing simulations to employees on a regular basis. The goal is to raise awareness about the risks of unfamiliar or suspicious emails. That’s why each simulation is also tied to a learning moment: if an employee clicks the link in the simulation, a microlearning module opens to explain what they should watch out for next time. If the employee recognizes the simulation, they can report it using the Phished Report Button in their inbox.

AI ensures that each phishing simulation is fully tailored to the individual employee—without any manual intervention. It automatically selects the most appropriate content, timing, and difficulty level for each user. This ensures employees only receive realistic and relevant simulations that truly improve their awareness, rather than generic emails that frustrate them for being too obvious or simplistic. Accidental clicks are never punished; the entire approach is built around positive reinforcement and constructive learning.

Phished uses a powerful AI engine to automatically generate and send personalized phishing simulations. The AI learns from real-world phishing threats and adapts each simulation to the individual employee’s behavior. The system takes into account factors like job role, region, language, industry, previous exposure to threats, and even optimal delivery timing to maximize impact.

In addition, the ZIR (Zero-Incident Rate) platform includes an AI-based simulation generator. With a single prompt, admins can instantly create and launch highly targeted phishing campaigns across the organization, in any preferred language. This makes it easy to test specific scenarios or reinforce awareness around emerging threats.

Phished simulations are available in over 25 languages, including British English, American English, Dutch, Flemish, French, German, Spanish, Italian, Polish, Portuguese, Brazilian, Czech, Japanese, Turkish, Catalan, Chinese, Finnish, Danish, Norwegian, Swedish, Arabic, … The platform automatically matches each simulation to your employee’s preferred language, ensuring relevance and impact across global teams. Custom, handcrafted simulations are also easily translated with the AI tool. 

Phished offers a library with more than 4500 unique, hyper-realistic phishing templates, combined with over 300 realistic sending domains. These templates cover a wide range of topics relevant to employees’ daily work environments, including HR-related messages (such as payroll or vacation requests), IT notifications, finance alerts, package delivery updates, office news, and account status changes.

Templates are designed with varying levels of difficulty—from easily recognizable phishing attempts for beginners to highly sophisticated attacks that closely mimic real-world threats. They also use different triggers to engage users, including URLs, attachments, QR codes, and data entry forms. This variety ensures that employees are exposed to the full spectrum of phishing tactics they may encounter in reality.

Phished lets you craft your own phishing simulations from scratch or modify existing templates to fit your needs. Once created, you can launch them company-wide with just a few clicks. It’s the perfect way to run targeted campaigns or raise awareness around specific threats - without losing the ease of automated delivery.