Phishing attack simulation payload editor is extremely broken

Question

Phishing attack simulation payload editor is extremely broken

Emil Gertsen Grønkjær 0

We are using the attack simulation training module in Defender for Office.

So we have used the solution to run phishing exercises the past year.

I now wanted to change our custom positive reinforcement notification.
It seems the editor automatically removes all classes and a lot of the styling css content. Making it a living hell to design emails. This means I cant customize our content.

What is going on?

Raja Pothuraju 24,785 Reputation points Microsoft External Staff Moderator

2025-01-20T19:09:09.07+00:00

Hello @Emil Gertsen Grønkjær,

Thank you for posting your query on Microsoft Q&A.

I hope the answer shared by Catherine Kyalo helped you identify something to investigate regarding the issue. If the payload editor is not working as expected, I kindly request more details about the code you are using. Additionally, if the code is publicly available in any documentation, please share the link with us. This will allow us to reproduce the issue in our tenant and provide you with a more accurate and detailed solution. Thanks,
Raja Pothuraju.
Raja Pothuraju 24,785 Reputation points Microsoft External Staff Moderator

2025-01-26T18:40:42.45+00:00

Hello @Emil Gertsen Grønkjær,

Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back.

1 answer

Your answer

Raja Pothuraju 24,785 Reputation points Microsoft External Staff Moderator

2025-01-20T19:09:09.07+00:00

Hello @Emil Gertsen Grønkjær,

Thank you for posting your query on Microsoft Q&A.

I hope the answer shared by Catherine Kyalo helped you identify something to investigate regarding the issue. If the payload editor is not working as expected, I kindly request more details about the code you are using. Additionally, if the code is publicly available in any documentation, please share the link with us. This will allow us to reproduce the issue in our tenant and provide you with a more accurate and detailed solution. Thanks,
Raja Pothuraju.
Raja Pothuraju 24,785 Reputation points Microsoft External Staff Moderator

2025-01-26T18:40:42.45+00:00

Hello @Emil Gertsen Grønkjær,

Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back.

Answer 1

Hi @Emil Gertsen Grønkjær

From my understanding, you are trying to edit an end user notification on the defender portal. It is possible to create new and edit Tenant notifications. Here is a link https://learn.microsoft.com/en-us/defender-office-365/attack-simulation-training-end-user-notifications#modify-end-user-notifications

I am unable to replicate your scenerio as I have the ability to edit and create end user notifications from the portal.

You can use the import email button which activates choose File to select a new file (txt) which can replace the exisiting notifications.
You can change the content by selecting text and adding any required text on the notification.
Finanlly toggling to code allows for you to view and edit exisiting code.

User's image

Share via

Phishing attack simulation payload editor is extremely broken

1 answer

Your answer