Why are clicks being recorded when users say they didn’t click anything?

If you’re seeing an unusually high - or even 100% - click rate on your phishing simulations, it almost always points to false positives. These occur when automated security tools click the links in your emails before they reach your users. This can still happen even if some whitelisting has already been done, especially when multiple layers of security are involved.


These tools scan links to check whether they’re safe, and in doing so, they can trigger a false-positive (bot) click in your campaign reports, even though the user never interacted with the email.

👉🏼See our Troubleshooting Guide: How to Fix False Positives (100% Click Rates) for steps to fix this.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us