Phriendly Phishing is a fully digital, automated training and phishing simulation platform that uses simple content to make the learning memorable and enjoyable.

It’s fully funded, for two years, for all New Zealand Private Training Establishments (PTEs) and their employees – as part of the Cyber Security for the Tertiary Sector (CSTS) initiative.

The total time commitment for the training is about an hour or so. Customised, hands-on support from cyber security experts is available along the way.

CSTS also offers other tools and resources to help your organisation improve its cyber security awareness and maturity. Check out the CSTS information.

Register for Phriendly Phishing

Key dates

Tranche 2 dates

These dates apply only to PTE registrations from 23 April–3 May 2024.

• ASAP – before 17 May 2024: Complete technical onboarding steps
• 27 May–9 June 2024: Baseline phishing test – 2 weeks
• 10–16 June 2024: Send all staff communication – 1 week
• 17 June–12 July 2024: SCAM 101 NZ course – 4 weeks
• 15 July 2024–ongoing monthly: Monthly phishing campaigns

Note: for PTEs that are in Tranche 1 (PTEs registered before 15 March 2024), your dates are captured below: 

Resources

Join the Phriendly Phishing Intro Webinar 1.45-2pm, 1 May 2024 to learn more about what’s on offer

• Phriendly Phishing Instructional Webinar 8 May 2024 – recording to be added after webinar (upon registration, PTEs will automatically receive an invite to this)
• What to expect from Phriendly Phishing
• Sneak peek into the courses
• Phriendly Phishing Onboarding Guidance (PPTX 7 MB)
• Phriendly Phishing Road Map (PDF 226 KB)

Resources for staff

We’ve compiled some useful resources to help you communicate with staff about the Phriendly Phishing initiative.

• Email template (DOCX 81 KB)
• Example of training email template (PDF 63 KB)
• Everything you need to know about Learner Hub (PDF 238 KB)

Visit the Phriendly Phishing website for more templates and resources: Phriendly Phishing Communication Collateral – Phriendly Phishing

FAQs

What is phishing?

Phishing is the practice of sending fraudulent emails. These emails often impersonate reputable companies and aim to trick you into revealing personal information, like passwords or credit card numbers.

What is Phriendly Phishing?

Phriendly Phishing is a fully digital, automated training and phishing simulation platform that uses simple content to make the learning memorable and enjoyable.

What will I learn?

PTES will be able to:             

• train their team using simulated phishing emails
• detect and learn the signs of scams
• schedule relevant bite-sized training courses
• protect their people, data and processes
• track progress, including employee improvement and risk mitigation
• take the learning, apply it in their personal lives, and share with family and friends.

How much time do I need to invest in setting up/maintaining Phriendly Phishing?

Sign up takes less than 5 mins. Registrations for ‘Tranche 2’ close 5pm 3 May 2024.

Register for Phriendly Phishing

Discovery and platform set-up takes a couple of hours. Phriendly Phishing has even automated a part of the onboarding for you with a default learning journey that makes life easier.

The ongoing time commitment to manage platform activities will vary between PTEs but should not take too much time out of the work day. The platform is designed to be user friendly with a ‘set and forget’ approach.

The training itself is a small investment of time for employees, with each module taking 2 to 10 minutes to complete.

Employees can take the learning and apply it to their organisation and in their personal lives.

Who will help me if I get stuck?

Customised, hands-on support from Phriendly Phishing’s experienced team is easy to access. You can contact support here: Submit a request – Phriendly Phishing

The CSTS team is also here to help. Email CyberSecurityTertiarySector@tec.govt.nz

Will it cost anything?

CSTS is fully funding Phriendly Phishing for all PTEs and their staff for two years. Beyond this time, PTEs can discuss their subscription with the Phriendly Phishing team.

I want someone to explain how the set up works. Who can help?

Once you sign up for Phriendly Phishing, you will receive an invite to an instructional webinar that will walk you through the set up. Phriendly Phishing will take care of some of the set up for you. You can use the Onboarding Guide above and Phriendly Phishing is there to help every step of the way.

What if I already have cyber security training in place?

Amazing, you have already started your cyber security awareness journey. Phriendly Phishing will complement your current training and is fully funded by TEC for two years. Phriendly Phishing is an interactive cyber security awareness training and phishing simulation solution that educates and empowers your organisation using simple content to make the learning memorable and enjoyable. You will get measurable insights into your cyber security awareness journey and the trainings are bite sized and won’t take up much of your day or disrupt your schedule. 

I’ve signed up for Phriendly Phishing. When will Phriendly Phishing create my account so I can get started?

Phriendly Phishing will create your account after the sign-up period closes on 3 May 2024. You’ll receive an email once your account is created. Then follow the Onboarding Guide to complete the onboarding or come to one of the instructional webinars – you’ll receive an invite when you sign up.

What if my organisation doesn’t use its licenses?

The fully funded Phriendly Phishing offer is only available to PTEs and employees who will use their licenses for the full two years. Unused or inactive licenses may be revoked.

What happens if I use a personal email address (Gmail or Hotmail)?

To effectively deliver phishing simulations, Phriendly Phishing’s domains and IP’s need to be whitelisted. When using a consumer email service such as Gmail or Hotmail, whitelisting functionality is not available. In these circumstances, staff with a consumer email will still be able to access secure awareness training. They can login into the learner hub at learnerhub.phriendlyphishing.com, put in their email and use the verification code to login.

Please note, users will need to be added into the Phriendly Phishing platform before being able to login to the learner hub.

If you’re unsure if your email address falls into this category, please contact Phriendly Phishing.

Can I give a Phriendly Phishing license to one of our students?

Cyber Security for the Tertiary Sector is fully funding Phriendly Phishing licenses, for two years, for New Zealand Private Training Establishment employees only. An employee can be permanent, fixed term or a contractor. The offer does not extend to students.

Where the Phriendly Phishing platform may refer to ‘learners’ it is referencing your employees only.

Can we add our own PTE branding to the training emails sent to employees?

Yes, templates are customisable, and we recommend adding your own logo/branding to confirm your partnership with Phriendly Phishing.

You can find more information here: Customise Training Email Templates – Phriendly Phishing

I’m interested in learning more about the Phishing button. Where can I find more information?

Please refer to page 21 of the onboarding guide above – ‘Phish Reporter Configuration’ step 4.