Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
Infosec IQ
Score 8.9 out of 10
N/A
Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home. With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences, the solution aims to present everything needed to prepare employees and strengthen the user's cybersecurity culture. The platform can be customized and personalized to match an organization’s…
Cofense phishing simulation product is one of the best security awareness solutions that our security team has tested. The product is feature-rich and easy to navigate. Awareness templates are numerous to select from and in multiple languages, which is a big plus. Campaign …
When evaluating potential solutions for their effectiveness and return on investment (ROI), several factors stood out in our decision to choose Infosec IQ: Single Sign-On (SSO) Integration, excellent Support and Customer Service: and scalability/flexibility:
Infosec [IQ] is lightyears ahead of cofense. They did not even have training videos on their platform. The cost for cofense also went up by nearly triple for education. Creating phishing emails was a chore and some things were not possible. Infosec [IQ] has much better …
We had to lower some security settings to allow the phishing tests to be done, which is not great. The product has also become less effective over time as Chrome/Firefox started flagging sites as malicious. This was out of our control and slow down the phishing campaigns we …
i preferred [Infosec IQ] to Cofense but it was far behind Proofpoint and KnowBe4 in terms of ease of use and detailed user reporting. I would rate it to be a solid platform and Proofpoint competitor but not in the same league as KnowBe4. The training platform and catalog is …
Cofense PhishMe is an excellent solution for scenarios where it will be sold as a managed service. I believe that PhishMe is too expensive for many clients and instead would benefit from the economies of scale where an MSSP sells it as part of a whole service, which offers the analysts and reporting included. PhishMe is excellent for training and awareness of Phishing, but shouldn't replace mandatory training for new joiners or yearly refreshers, it should only be used as an additional training option.
Infosec IQ stands out as an excellent solution for conducting recurrent trainings and running simulated phishing campaigns. The platform not only offers robust features but also provides prompt and reliable support to its users. This level of assistance ensures a smooth experience and helps address any questions or concerns that may arise during training or campaign execution.One notable advantage of Infosec IQ is its support for Single Sign-On (SSO) functionality. This feature enables users to access the platform seamlessly using their existing credentials, eliminating the need for separate login information. By integrating with an organization's existing authentication system, Infosec IQ simplifies user management and enhances security by leveraging established access controls.In summary, the strengths of Infosec IQ include its comprehensive training and simulated phishing capabilities, excellent support services, and the convenience of SSO integration. These features contribute to a more efficient and effective training experience, allowing organizations to strengthen their cybersecurity defenses while minimizing administrative burdens.
It gives clear-cut segregation of different parts of an email, header, text and HTML body, URL, attachments, HTML preview and some analytical insight like "similar reports." This distinctive approach actually helps reduce data overload during an analysis.
The URLs captured here pass through an automatic reputation check [in our case VirusTotal] and add a tag of the reputation. If it is a well-known bad URL the tag helps us take the decision fast.
For creating automation rules on the reported emails the "Recipes" section is really helpful. We can create easy recipes [or rules ] to handle a huge flow of reports and also we can create more sophisticated rules depending on the Cyber intelligence feed to catch the really bad currently less known attack attempts by malicious emails.
The "Threat Indicators" section is also useful to use as a threat intelligence source to check the URLs for their maliciousness.
The content for AwareEd training is robust and extensive. Many cybersecurity topics available for training material. As well as the ability to print promotional training sheets that can be displayed in break rooms, training rooms, hallways, etc.
The built-in phishing simulation templates are great! Recently, Infosec IQ added a new category called "Catch of the Week" that has very realistic phishing simulations that are much more effective and great examples of the types of phishing scams being used today.
Reporting works very well and provides information that can be shared with department managers so they can have visibility on how well their team members are meeting the cybersecurity training requirements.
So far this platform has worked really well for our company. Feedback has been great from our users because training is interesting, interactive and always being updated. Phishing simulations have been extremely helpful for us to stay compliant with ISO requirements and provide insight into areas we need to improve upon to educate our users better and make them more aware of vulnerabilities and threats
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
It works very good for our company because it is easy to maintain and easy to keep track of people who followed the trainings. We can add and remove people very easily and can keep track of the trainings. Because of this, we are able to chase users that did not follow their training yet and can make sure the company is aware of security risks.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
We've gotten great help when we needed it. When our IT guy left who managed security, we had limited knowledge internally with all of the configuration and implementation. Support helped get us running quickly. They spent an hour or so with the new IT person and they hit the ground running. That was super easy.
Cofense PhishMe was the first choice for us as the user interface as well as their bundle package with Cofense Triage and Vision has helped the organisation to alleviate the overall security awareness posture. The other vendors did not provide a vast range of phishing scenarios as compared to Cofense PhishMe platform.
Infosec [IQ] is lightyears ahead of cofense. They did not even have training videos on their platform. The cost for cofense also went up by nearly triple for education. Creating phishing emails was a chore and some things were not possible. Infosec [IQ] has much better templates and creating emails from scratch is a ton easier.
Pricing per user is reasonable for an annual contract. Not a bad investment considering that phishing emails and other threats are popping up daily in our users email accounts. Imagine if they did not know how to identify threats and how to be more careful in clicking links, it would have a been a far more expensive endeavor to recover from a network attack.
They're well fitted for my business requirements. Reporting fraud actions and data piracy is important for my company's healthy life. More restricted access to hacking thus ensuring a safe workplace
Recipes in the system are capable of handling almost 2x what an analyst does, which cuts down the efforts [of] an analyst and provides more time for accurate strategies.
With roughly 90% false positives coming through, the remaining 10% of true positives need as much attention as they can get for the full investigation and analysis.
1,500 or more phishing messages can come through in a given week and the amount of time/employees required to review this without a tool like Cofense is surely beyond [the] expected/anticipated budget.
When we were threatened with a major price hike, we were able to transition to Infosec IQ at our current cost despite being a new account and the delta cost difference being high.
Allowing our larger clients to access and administrate themselves cuts down on requests.
The Outlook plug-in minimizes tickets asking our technicians 'is this spam?'
