TrustRadius Insights
Cofense PhishMe is a versatile platform that addresses the growing concern of email-based attacks and helps organizations improve their …
Overview
What is Cofense PhishMe?
Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for…
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Pricing
N/A
Unavailable
What is Cofense PhishMe?
Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
Entry-level set up fee?
- No setup fee
For the latest information on pricing, visithttps://cofense.com/pricing
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
34 people also want pricing
Alternatives Pricing
What is KnowBe4 Security Awareness Training?
KnowBe4 is a security awareness training and simulated phishing platform used by more than 65,000 organizations around the globe. Founded by IT and data security specialist, Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO…
What is CyberHoot?
CyberHoot is presented as a simple, fast and effective employee Security Training Platform from the company of the same name headquartered in Portsmouth. The platform includes 700+ Training Videos, 25+ Policy Templates, and Phish Testing.
Product Details
- About
- Competitors
- Tech Details
- Downloadables
- FAQs
What is Cofense PhishMe?
Cofense PhishMe™ is the flagship behavior conditioning, phishing awareness platform from Cofense™ which the vendor states is trusted by over 2500 enterprise customers across all verticals. Using simulated phishing emails, Cofense PhishMe conditions users to identify and report email-based threats that bypass secure email gateways and land in user inboxes. Cofense PhishMe uses experiential learning at the point of failure to reinforce positive security awareness behavior.
A phishing simulation program must reflect the real threat landscape. Cofense boasts a unique perspective on the threat landscape, with insights into threat actors & campaigns in the wild, together with unrivalled visibility of phishing threats that bypass existing security controls to reach the recipient inbox. Leveraging this perspective, Cofense PhishMe operationalizes real, active threats into realistic phishing scenarios to ensure program relevance. The vendor describes Cofense PhishMe as using intelligent automation, advanced algorithms, and embedded best practices to increase user engagement and reduce program planning, management, and execution overhead. Cofense PhishMe’s education library includes content created by its content team, as well as from 3rd party content vendors.
Cofense PhishMe has been rated as a leader in the Gartner Magic Quadrant for Security Awareness CBT Solutions and a Gartner peer insights Customer’ Choice security awareness vendor 2 years in a row.
Cofense PhishMe Features
- Supported: Real Threat & Secure Email Gateway Miss Templates – increase relevance of programs by simulating real threats observed to bypass common Secure Email Gateways
- Supported: Responsive Delivery – increase program engagement and eliminate global scheduling challenges by delivering simulation emails only when users are active in their mailbox
- Supported: Smart Suggest – advanced algorithms and embedded best practice provide program guidance based on industry relevance and program history.
- Supported: Recipient Sync - automates syncing of recipients from Azure Active Directory to PhishMe. Utilize Recipient Sync and Dynamic Groups for fully automated group management.
- Supported: Automated Playbooks – automate execution of a 12-month simulation program with just a few clicks.
- Supported: Comprehensive education catalog including content from leading third-party providers including NINJIO and AwareGo.
- Supported: Board Reports – executive level insight into program performance and changes in resiliency to phishing.
Cofense PhishMe Screenshots
Cofense PhishMe Video
Cofense PhishMe Responsive Delivery – increase program engagement, reduce whitelisting and eliminate global scheduling challenges by delivering simulation emails only when users are active in their inbox.
Cofense PhishMe Competitors
- KnowBe4 Security Awareness Training
- Proofpoint/Wombat
- Ironscales
Cofense PhishMe Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | Global |
| Supported Languages | English - American, English – British, English – Australian, Afrikaans, Arabic, Chinese – Simplified, Chinese – Traditional, Czech, Danish, Dutch, Finnish, French, French – Canadian, German, Greek, Indonesian, Italian, Japanese, Korean, Norwegian, Polish, Portuguese, Brazilian Portuguese, Romanian, Russian, Serbian, Slovak, Spanish, Spanish – Latin American, Swedish, and Turkish |
Cofense PhishMe Downloadables
Frequently Asked Questions
Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
KnowBe4 Security Awareness Training are common alternatives for Cofense PhishMe.
Reviewers rate Role-based user permissions highest, with a score of 8.1.
The most common users of Cofense PhishMe are from Enterprises (1,001+ employees).
Cofense PhishMe Customer Size Distribution
| Consumers | 0% |
|---|---|
| Small Businesses (1-50 employees) | 4% |
| Mid-Size Companies (51-500 employees) | 35% |
| Enterprises (more than 500 employees) | 61% |
Comparisons
Compare with
Reviews and Ratings
(49)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
Cofense PhishMe is a versatile platform that addresses the growing concern of email-based attacks and helps organizations improve their cybersecurity. Users report suspicious emails directly from their email client using the Cofense PhishMe plugin, streamlining the process of identifying potential threats. The information security team then triages and analyzes the reported emails, leveraging the different fields provided by Cofense PhishMe to efficiently categorize and prioritize them for further investigation.
One key use case of Cofense PhishMe is its ability to simulate phishing scenarios, providing valuable insights into users' susceptibility to such attacks. This helps organizations better understand their employees' level of awareness and readiness in recognizing and reporting phishing scams or malicious emails. The platform offers a user-friendly interface that does not require extensive training, making it accessible to users across the organization.
Additionally, Cofense PhishMe helps track phishing attempts and enables users to easily report suspicious emails for further action. By automating the categorization of reported emails, the platform saves time and streamlines the analysis process. It also provides statistics that inform clients about the success of their user training efforts, empowering organizations to continually improve mail security awareness.
Furthermore, Cofense PhishMe plays a vital role in increasing users' recognition of legitimate versus fake or malicious emails. Through experiential learning and continuous training, it educates employees on how to detect phishing emails and utilize built-in reporter tools for effective triage. The platform is part of a comprehensive security awareness program that helps organizations demonstrate their commitment to protecting sensitive information and complying with regulatory requirements.
Overall, Cofense PhishMe is widely used by organizations seeking to enhance their email security defenses by empowering employees to proactively identify and report potential phishing threats. It provides automation, valuable insights, and user-friendly features that contribute to creating a more resilient cybersecurity posture.
User-Friendly Interface: Many users have praised the product for its friendly and intuitive user interface, making it easy to navigate and organize campaigns. It has been described as intuitive and has saved users time by allowing them to report phishing attempts with just a click of a button.
Customizability: The ability to customize the product has been highly valued by users. They appreciate the flexibility in creating automation rules and recipes to handle a large flow of reports. Users also mentioned that the product offers detailed whitelisting instructions and a wide variety of customizable templates.
Excellent Customer Support: Users have consistently praised the customer support provided by the company. They found the support to be great, with an outstanding account manager. Assigned professionals advising and suggesting the best approach for their user base was also appreciated. The availability of multilingual support was mentioned as a positive aspect for global companies.
Laggy Performance: Some users have reported experiencing significant laggy performance with the web version support, resulting in frustratingly slow upload and download rates for results and recipient lists. This issue has hindered their workflow efficiency and affected their overall experience with the software.
Limited Account Management: Users have expressed frustration with the limited capabilities of account management within the software. They feel that it could be improved by offering more automated features, such as user cleanup for inactive accounts. The current manual process is time-consuming and inconvenient for administrators.
Lack of Training Resources: Many users have voiced concerns about the lack of innovative training resources available in the software. They would like to see more options for customization, allowing them to tailor training materials to their specific needs. Additionally, users suggest that Cofense PhishMe should provide templates based on current trends in phishing attacks to enhance the effectiveness of their training programs and keep up with evolving threats in cybersecurity.
Attribute Ratings
Reviews
(1-2 of 2)Companies can't remove reviews or game the system. Here's why
August 18, 2021
Phishing simulation with a small team for a big company
In the past, we were using it only on a quarterly basis as a benchmark type of activity. Nowadays, we are offering Phishing Simulation as a service to our departments and we are slowly getting to 1 big Q exercise (250k people) and 3-4 monthly ones (anywhere from 50 to 5k users).
- Friendly UX.
- Huge selection of phishes.
- Ability to customize.
- Web version support - sometimes it's too laggy.
- Upload/download rate for results and recipient lists.
- CIRT now has a great dataset of simulations that we ran, with some interesting metrics.
- Business leaders now view phishing defense as a metric they want to improve.
5
If you work in Europe - prepare your deck for Privacy and WC reviews.
For us it was the most difficult part, but we managed to find almost right balance between business needs and privacy.
For us it was the most difficult part, but we managed to find almost right balance between business needs and privacy.
2
- Global Benchmark
- Targeted Exercises
- CIRT data analytics
- Rewarding Fastest Reporters
- Using as part of a greater dataset
- Implemented in-house
No
Change management was a small part of the implementation and was well-handled
- Lack of integration with AD on our side
- Privacy and WC issues
- Online training
Yep - it provides us not only with a one-stop-shop for all the issues, but also a knowledgeable expert that can make your life easier in the program itself.
Yes
Basically every time, especially when we are on tight deadlines. Our manager added a special column, calculating times between different events in the simulation, which allows us to save a lot of time calculating our metrics.
- Scenario choosing
- Basic edits
- Basic settings
- Advanced edits - as webportal's built in Text Editor is not the best one in the market
- Recipient list updates is cumbersome if you are not integrating Cofense with your AD
July 23, 2021
Great Phishing simulation provider
We use Cofense PhishMe enterprise wide. We use it for security awareness and education. Monthly phishing simulation tests are done to help our users understand and identify phishing emails. We also use the metrics from these test extensively to target areas that may require additional education. Targeted phishing simulations are done as well.
- Updated templates for phishing exercises
- Great customer service and support
- Great scenario summary reports
- Nice interface /dashboard on web site.
- Self service to download pdf's for education material
- Would like to see more Awareness newsletters
- Self service customization of training materials.
- Reduced risk of people clicking on unknown links
- Phishing failure rate average has significantly dropped since we started the program
- Employee engagement has increased
- Security awareness is becoming part of our culture.
Cofense was selected as a vendor before I was in this role. Another vendor was evaluated for additional security awareness training but not to replace the Cofense PhishMe program. We also looked at Ninjio to supplement our phishing education program.
No, based on prior experience it was not needed
No
I always receive exceptional service and support from my contact. Above and beyond reports. Always timely and always has great suggestions for monthly phishing tests.