We have embedded a small hidden image (1 pixel x 1 pixel) within the MetaPhish email, and once this image is downloaded, it will record an ‘Open’ audit for that user.

This method allows us to track how a user has interacted with the MetaPhish email and is a standard practice within simulated phishing software.

Depending on the user's Outlook settings, the image may be downloaded automatically when the email is opened, triggering the ‘Open’ audit.

Alternatively, the user may choose to manually download the image after opening the email.