Skip to main content
All CollectionsuPhish
Understanding uPhish: The basics
Understanding uPhish: The basics

What is uPhish? Assessing user vulnerability with usecure's simulated phishing software.

Jordan Daly avatar
Written by Jordan Daly
Updated over 9 months ago

What is uPhish?

uPhish is usecure's intuitive cloud-based phishing software that enables you to quickly assess user vulnerability towards real-world phishing attacks.

With uPhish, you're able to identify which users are susceptible to both common forms of phishing and highly-targeted forms of 'spear phishing'.



With uPhish, you can:

  • Accurately determine user vulnerability towards phishing

  • Identify users that need urgent phishing awareness training

  • Reduce the likelihood of users falling victim to future phishing attacks

  • Develop a security-minded culture in your organisation



Key features of uPhish:

  • Automated phishing (AutoPhish): uPhish can deploy regular phishing simulations with our new 'AutoPhish' feature - allowing you to assess user performance over time. 

  • Realistic template library: Discover a library of phishing emails and landing pages impersonating trusted organisations, banks and more.

  • Create custom emails and landing pages: Craft your own simulated phishing campaigns, impersonate internal communications and more.

  • Inline training: Opt to automatically send out additional training content from your Course Library to users who become compromised in phishing simulations.

  • Real-time tracking: See how your users interact with your simulations in real-time, giving you a key insight in how users will perform during a real attack.

  • In-depth reporting: View the individual performance of your users or assess your organisation in departments or as a whole - with custom reporting.


Key features of uPhish

Automated phishing (AutoPhish)

When the AutoPhish setting is enabled, uPhish will automatically deploy phishing simulations based on a frequency set by your usecure admin (every X weeks).

You're also able to to choose which templates you would like to exclude (both custom or pre-made), what groups of users you would like to exclude, and whether users should only receive simulations during work hours.

Auto Phish does not currently support phishing templates with attachments.

Realistic template library

uPhish comes packed with an extensive library of pre-made templates, allowing you to quickly deploy realistic campaigns with ease.


These templates impersonate the likes of Microsoft, Amazon, Google and many more. 

Once selected, you'll be able to tweak certain settings in your chosen template (e.g. subject line, sender address) if you wish.


Create custom emails and landing pages

Alongside your pre-made uPhish templates, you can create your own emails and landing pages and add them to your personal template library.

These can be used to test your users with targeted phishing attacks that impersonate employees within your company (an increasingly prevalent form of phishing).

Inline training

You can choose to automatically enrol users who become compromised in phishing simulations onto additional training. You can choose from any of the courses from the usecure library, use the purpose-built Phishing Micro Training module, or even create your own!


Real-time tracking

Once you have launched a uPhish simulation, you'll be able to view the real-time performance of your users, including how long it takes for them to perform each action (i.e., open, click, compromise).


In-depth reporting

From your 'Simulation Performance' in the 'Reports' sections, you can view and filter different metrics for your simulations.


You can filter by groups, templates, and the average opened, clicked and compromised rate over time.

Next steps

Did this answer your question?