RPAI ITSupport
asked on
ProofPoint Opening KnowBe4 Attachments
We are using Proofpoint Protection Server - Version 8.14 for our spam filter and KnowBe4 for our employee test phishing campaigns. Lately, we have noticed that some users are getting false clicks on attachment/link clicking because of ProofPoint scanning the email. Has anyone else run into this problem and know a resolution? Thanks.
I believe you should be able to add the IPs to the Proofpoint URL defense safe sender list which eradicates the problem. Of course, you would need to speak to Proofpoint directly on this to clarify. They may push Wombat (Proofpoint Security Awareness Training) or PSAT onto you though :)
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
When tracking opens + clicks, you must write analysis software to count how fast messages are opened + links are clicked.
This differentiates between Bots + Humans.
For example, an email containing 3x clickable links which shows up as opened 3x times with 9x clicks, all within one second is obviously a Bot or Scanner or said another way, these are all synthetic clicks.
So you'll have to remove all synthetic clicks from your stats... which is no small matter...
I've had to write a massive amount of custom code over the years to accomplish this end.
Tip: It's important to remove these, because... many Spam Traps show this type of synthetic only behavior, so if you just ignore this... eventually... there's a very good chance you'll end up on one or many or all RBLs with 0% email deliverability.