Phishing Simulations NZ

Phishing Simulations with
Real-Life NZ Scenarios

Phishing in NZ remains the top threat in almost all cyber statistics. We use real-world NZ phishing simulation emails — IRD, NZ Police, NZ Post, ANZ, ASB — to train your employees before real attackers strike.

Start Free Trial — 45 Days See Pricing
91%
of attacks start with phishing
30%
of untrained NZ staff click
less clicks after training

What Are Phishing Simulations?

Keep Your Employees Engaged with Real Threats

Phishing simulations are controlled exercises designed to mimic real-life phishing attacks. These simulations educate employees on recognising and responding to phishing attempts — the most common method used by cybercriminals to steal sensitive information.

Our live phishing simulations use NZ-localised templates that mimic real threats Kiwi employees actually face — ensuring you get the best value from your training.

NZ Phishing Email Categories:
IRD / Inland Revenue NZ Police NZ Post / Courier Banking (ANZ, ASB) CEO Fraud IT Helpdesk Microsoft / M365
SecureAZ phishing dashboard

How It Works

Set It Once. Runs Forever.

Configure once and the platform handles everything — scheduling, sending, tracking, and remedial training automatically.

1

Configure Once

Choose monthly or quarterly. Select NZ as your country for localised templates. Enable auto-selection or pick from 50+ templates.

2

We Send the Bait

Realistic NZ-localised phishing emails sent to your team at random times during business hours. Delivered from dedicated domains with DKIM/SPF — no SMTP limits.

3

Track Who Clicks

Opens, clicks, and credential submissions tracked per person. Your dashboard shows who's at risk with click-rate trends across campaigns.

4

Training Kicks In

Clickers are instantly redirected to a "You've been phished" page, then automatically enrolled in remedial training. No manual follow-up.

Template Library

50+ Realistic NZ Phishing Templates

Every template mimics a real attack Kiwi employees would actually face. Graduated difficulty builds resilience over time.

EasyNZ
IRD Tax Refund
Subject: Your tax refund is pending
EasyNZ
NZ Post Parcel Pending
Subject: Your parcel needs a fee to release
EasyGLOBAL
CEO Gift Card Request
Subject: Quick favour needed
MediumNZ
ANZ Bank Security Alert
Subject: Action required: verify your account
MediumGLOBAL
Microsoft MFA Required
Subject: Verify your Microsoft account
MediumGLOBAL
Supplier Invoice — Changed Bank Details
Subject: Updated invoice — new banking details
HardGLOBAL
SharePoint File Shared
Subject: [First Name] shared a file with you
43+
more NZ, AU & Global templates

Auto-selection rotates through categories and escalates difficulty over time.

Reporting & Analytics

Get Valuable Data & Insights on Your Team

See real-time data on every campaign — who opened, clicked, submitted credentials, and reported the email. Your dashboard shows click-rate trends, high-risk users, and AI-powered recommendations after each run.

  • Emails sent · Opened · Clicked · Reported · Trained
  • Click-rate trend chart across last 3 campaigns
  • High-risk user list — staff who've clicked 2+ campaigns
  • Exportable for NZ cyber insurance and audit evidence
Start Free Trial →
Phishing Simulations — SecureAZ
20
Sent
10%
Clicked
5%
Reported
2
Trained
Click Rate Trend↓ Improving
30%20%10%
⚠ High-Risk Users
Liam Johnson2× clicked
Priya Sharma2× clicked

Phishing Simulation Pricing

Add phishing simulations to any paid plan — flat rate, any team size, unlimited campaigns.

Phishing Simulation Add-on
NZ$29/mo
Flat rate · any team size
  • Unlimited campaigns
  • 50+ NZ-localised templates
  • Auto remedial training
  • Free on Scale plan (≤250 users)
See Full Pricing →

See How It Works

From Setup to Phished
Watch the Full Flow

Configure once, we handle everything. See exactly what your team experiences — from the inbox to the teachable moment.

SecureAZ

Phishing Simulations

Automated phishing tests for your team

Active
Campaigns
Templates
🇳🇿 New Zealand Templates 35 templates
Pacific Bank NZ
"Urgent: Suspicious login detected"
Credential Harvest Medium
NZ Revenue Service
"Tax refund of $842.00 waiting"
Credential Harvest Easy
KiwiPost Deliveries
"Confirm your delivery address"
Package Delivery Easy
NZ Roads Authority
"Your driver licence expires in 14 days"
Credential Harvest Medium
NZ Injury Cover
"Your claim requires urgent attention"
Social Engineering Hard
Ledger NZ
"Invoice INV-00842 from Acme is due"
Invoice Fraud Medium
WorkSuite 365
"Your password expires in 24 hours"
IT Helpdesk Easy
Sarah Mitchell, CEO
"Urgent – process a payment for me"
CEO Fraud Hard
Frequency
Monthly
Quarterly
Target
All Users (24 people)
Inbox
0
Search mail...
Pacific Bank NZ
! Just now
Urgent: Suspicious login detected on your account
We detected unusual sign-in activity. Verify your identity immediately to...
Zoom
2 days ago
Your weekly meeting summary
Here's a recap of your meetings this week...
Slack
3 days ago
You have 3 unread messages in #general
Tom: "Anyone free for a call at 2pm?"...
Google Workspace
5 days ago
Storage usage report
Your organisation is using 68% of available...
IT Helpdesk
1 week ago
Scheduled maintenance this weekend
Systems will be offline Saturday 11pm...
← Back to Inbox
Urgent: Suspicious login detected on your account
From: Pacific Bank NZ <[email protected]>
To: [email protected]
PBK
Security Notification

Dear James,

We have detected suspicious login activity on your Pacific Bank internet banking account from an unrecognised device in Auckland.

To protect your account, please verify your identity within the next 2 hours or your account will be temporarily suspended.

Verify My Account

If you did not attempt to log in, please call us on 0800 722 433.

Pacific Bank Security Team

Pacific Bank NZ Limited  |  120 Lambton Quay, Wellington
You clicked a phishing link
This was a simulated test by your IT team.
Red flags spotted
Sender domain was "online-portal.info" — not pacificbank.co.nz
Created urgency: "2 hours or account suspended"
Generic greeting — not your full name
3 min read · Learn how to spot phishing emails
✓ Phishing simulation scheduled · Sends to 24 users next Monday
1
Pick a template
Choose from 50+ NZ-localised phishing scenarios
2
Schedule it
Monthly or quarterly — set once, runs automatically
3
Email lands in inbox
Realistic NZ phishing email delivered to your team
4
Instant teachable moment
Clickers see exactly what they missed — and why

Frequently Asked Questions

Will staff know the phishing emails are fake?
That's the point — they shouldn't. We recommend telling staff in general terms that "security testing may occur" without revealing timing or methods. This keeps simulations effective while giving employees a fair heads-up.
Will the phishing emails land in spam?
SecureAZ uses dedicated phishing domains with full DKIM/SPF authentication. Emails are designed to land in the inbox. For Microsoft 365 environments we provide a whitelisting guide to ensure delivery.
How many templates are available?
50+ templates including NZ-specific scenarios (IRD, NZ Police, NZ Post, ANZ, ASB) and global templates (CEO fraud, Microsoft, Google). The system auto-selects based on your country setting and escalates difficulty over time.
Can we schedule phishing campaigns?
Yes — choose monthly or quarterly scheduling and the system runs forever automatically. Sent at random times during business hours for realism. You can also send manual one-off campaigns anytime.

Find Out Who Would Click Before Hackers Do

NZ$29/mo flat rate · Unlimited campaigns · No SMTP limits · Cancel anytime

Start Free Trial → See Pricing