Skip to main content
TrustRadius
KnowBe4 PhishER/PhishER Plus

KnowBe4 PhishER/PhishER Plus

Overview

What is KnowBe4 PhishER/PhishER Plus?

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…

Read more
Recent Reviews

Phishing Hero!

10 out of 10
March 13, 2024
Incentivized
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is …
Continue reading
Read all reviews

How KnowBe4 PhishER/PhishER Plus Differs From Its Competitors

Time Savings

With KnowBe4 PhishER, we freed up incident response analysts' time to focus on more critical threat emails and associated mitigation actions. This has freed up analyst time, and they can now spend it on projects and security training, primarily related to cloud security technology. PhishER's quick …
Continue reading

Time Savings

Instead of depending on individuals to alert our security team and handling incidents one email at a time, we can see & manage threats at the organization level, even removing them before one of our team members even sees an email.
Continue reading

Time Savings

We're able to have potential phishing emails go to a centralized dashboard. There, they can sit while we assign a rating and the possibility of a phishing attempt. This saves our organization time and energy so we can focus on the critical side of business. We're also able to let users know …
Continue reading

Time Savings

Using KnowBe4 PhishER, our organization has streamlined the incident response process, distinguishing real threats from harmless emails efficiently. This precision has saved us substantial time, estimated at a 55% reduction in sifting through false positives. The time saved is reinvested into …
Continue reading

PhishER Capabilities

As of now, our organization hasn’t implemented any of these specific capabilities like PhishML, PhishRIP, PhishFlip, or the PhishER Blocklist from KnowBe4’s PhishER. However, recognizing their potential to automate threat remediation, transform threats into training, and customize security …
Continue reading

Time Savings

We have a very small team, and KnowBe4 PhishER has saved us time identifying and managing messages. With KnowBe4 PhishER, we have a comprehensive dashboard that allows us to take direct action and measures that also impact future potential attacks and attempts. Before KnowBe4 PhishER, we had …
Continue reading

PhishER Capabilities

We are using the standard capabilities of KnowBe4 PhishER, and with the help of KnowBe4 products specialists, have configured it optimally for our organization. We utilize KnowBe4 PhishER Blocklist to block undesired senders that based on their profile and messages, are obviously attacking us. We …
Continue reading

Time Savings

Saves time for your security team and reduces burnout. Reviewing these emails is not high value and is something your team hates doing and will put off. PhishER cuts down on the noise and lets your team deal with the actual threats.
Continue reading

Time Savings

Security Analysts are freed up to work on other tasks instead of reviewing all phishing reports. Because some/many of the reports end up being spam rather than actual threats, PhishER does a great job of analyzing the reported messages. It takes on action on the message where appropriate and also …
Continue reading

PhishER Capabilities

We use PhishML and PhishRIP for analyzing reported messages and automatically removing threats from all mailboxes company-wide. We use PhishFlip to transform real-world reported messages into innocuous test messages we can use to test and train our employee base. We attempted to use the PhishER …
Continue reading

Time Savings

The automated responses with low cases of false positives has allowed my team to focus on the actual threats and/or unknowns. This has promoted users to be more willing to report things.
Continue reading

Time Savings

PhishER has definitely saved our team and organization by utilizing the machine learning functionality within the solution. What use to take 30 minutes or more now takes less than 5 minutes. The benefits that it brings to our organization is freed up team resources, increased our confidence levels …
Continue reading

PhishER Capabilities

Our organization has implemented PhishML, PhishRIP, PhishFLIP to help automate remediation of known threats from our users' mailboxes. We found these capabilities to very useful and help with our education and remedial efforts. Having used this capabilities allows the team to have a good insight …
Continue reading

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 5 features
  • Company-wide Incident Reporting (52)
    7.8
    78%
  • Live Response for Rapid Remediation (55)
    7.8
    78%
  • Centralized Dashboard (62)
    7.8
    78%
  • Machine Learning to Prevent Incidents (54)
    7.7
    77%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing

3001-5000 Monthly Pricing Per Seat

$0.50

Cloud
per month (billed annually) per seat

2001-3000 Monthly Pricing Per Seat

$0.55

Cloud
per month (billed annually) per seat

1001-2000 Monthly Pricing Per Seat

$0.65

Cloud
per month (billed annually) per seat

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.knowbe4.com/pricing-phisher

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Incident Response Platforms

Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses

7.6
Avg 8.5
Return to navigation

Product Details

What is KnowBe4 PhishER/PhishER Plus?

PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.

PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.

KnowBe4 PhishER/PhishER Plus Features

Incident Response Platforms Features

  • Supported: Company-wide Incident Reporting
  • Supported: Integration with Other Security Systems
  • Supported: Centralized Dashboard
  • Supported: Machine Learning to Prevent Incidents
  • Supported: Live Response for Rapid Remediation

Additional Features

  • Supported: Automatic Message Prioritization

KnowBe4 PhishER/PhishER Plus Screenshots

Screenshot of This is a diagram of the PhishER workflow. Reviewing the PhishER workflow before getting started will provide an understanding of how PhishER, PhishRIP and PhishFlip work.Screenshot of The Reports screen will display five different dashboards of information.Screenshot of When entering the PhishER platform, the first screen that appears is the Dashboard. Here, a quick overview of the PhishER platform will appear.

KnowBe4 PhishER/PhishER Plus Video

Introduction to PhishER

KnowBe4 PhishER/PhishER Plus Integrations

KnowBe4 PhishER/PhishER Plus Competitors

KnowBe4 PhishER/PhishER Plus Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Supported CountriesGlobal

KnowBe4 PhishER/PhishER Plus Downloadables

Frequently Asked Questions

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Cofense Triage, Infosec IQ, and Proofpoint Threat Response Auto-Pull are common alternatives for KnowBe4 PhishER/PhishER Plus.

Reviewers rate Company-wide Incident Reporting and Centralized Dashboard and Live Response for Rapid Remediation highest, with a score of 7.8.

The most common users of KnowBe4 PhishER/PhishER Plus are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(160)

Attribute Ratings

Reviews

(1-11 of 11)
Companies can't remove reviews or game the system. Here's why
March 19, 2024

KnowBE4 PhishER Review.

Verified User
Director in Information Technology
Information Technology & Services Company, 5001-10,000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Before KnowBe4 PhishER, our SOC analysts would manually investigate hundreds of suspect/phishing emails reported by end-users that would slip our perimeter defense. After implementing the PhishER SOAR platform, we could automate the process end-to-end by categorizing the reported emails as benign, spam, and threat emails, including integration with our ticketing platform. This has saved hundreds of our security analysts' hours and enabled them to act immediately on critical threat phishing emails.
Pros and Cons
  • Categorization of suspect emails to Benign, SPAM and Threat.
  • Integration to VirusTotal, Ticketing platform.
  • Smart Dashboards.
  • Canned auto - response email to end-users.
  • AI/ML algorithm could be improved to reduce false positives and increase auto-resolved suspect emails.
Likelihood to Recommend
PhishER plugs a "Report to Cybersecurity" button in your organization's user Outlook client. This enables users to report any suspect email to your security operations center. The SOAR capability in the platform makes it quick to decipher suspect emails as benign, spam, or threat, and it automatically responds to users with immediate details. This saves hundreds of security analysts hours that would otherwise have been spent focusing on critical threat email actions. Malicious attackers have become intelligent and sophisticated; hundreds and thousands of emails slip through the mail perimeter defense and directly land on user mailboxes. With PhishER, security analysts can quickly respond to the threat emails, including deleting the emails from user inboxes.
March 13, 2024

Strong recommendation for KnowBe4 PhishER and all KnowBe4 products

Bill DeLong | TrustRadius Reviewer
Bill DeLong
CIO
TimePayment (Financial Services, 51-200 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Being in the financial services industry, our employees have to always be on alert for phishing and social engineering scams. KnowBe4 PhishER gives our security team the visibility it needs to quickly identify and remove potential email-based threats. It protects our organization and saves us a lot of time, money, and headaches.
Pros and Cons
  • Simple, easy to use. Minimal training required.
  • Helps you focus on the most important vs. reviewing thousands of emails.
  • Doesn't require a full-time resource.
  • Ability to integrate/share data with other SIEM solutions.
Likelihood to Recommend
It is a fantastic solution for small-to-medium sized companies that have a small security staff and need a simple solution that provides the needed monitoring & alerting but doesn't require a large team or a lot of time to implement. KnowBe4 PhishER can be up and running in minutes, providing valuable insight & protection and training opportunities.
March 13, 2024

KnowBe4 PhishER is a great service

JL
Joe Lalonde
IT Manager
Bold Furniture (Furniture, 51-200 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Having been the victim of ransomware attacks at my previous organization, I knew the importance of having my users trained to know the threats they would be facing in the digital world. That's why I chose KnowBe4 PhishER. We use KnowBe4 PhishER to train users on what a phishing attempt looks like, what to do if they see something that doesn't look right, and how to stay safe in a digital world. This keeps our network safer from outside threats.
Pros and Cons
  • Allows users to notify admins of a phishing email
  • Helps us train our users on proper email usage
  • Gives us information on what kind of emails are being reported
  • KnowBe4 PhishER could have a simpler login process
  • Email notifications would be nice
  • A phish confidence level on the emails reported could be useful
Likelihood to Recommend
I feel KnowBe4 PhishER is useful for any organization that has users connecting to the internet and receiving emails. The ability to report phishing attempts before they become an issue is a huge help to any systems admin, especially when you don't have a large team. It's a really helpful tool.
March 08, 2024

PhishER: Your Cybersecurity Shield Against Email Threats!

BB
Brad Bookser
Assistant Director of Information Technology
Sage Oak Charter Schools (Primary/Secondary Education, 201-500 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
The school has implemented the PhishER add-on for easily reporting suspicious emails. PhishER’s tools analyze these reports, reducing the workload on IT staff. PhishER streamlines the process of identifying, reporting, and responding to phishing attempts, thus saving valuable IT resources. PhishER is integrated into the school’s Gmail and IT security systems to prevent attacks through end user awareness and reporting.
Pros and Cons
  • The platform offers a simple, one-click reporting button for end-users.
  • Allows teachers to report suspicious emails without needing technical expertise.
  • The IT department is able to review all suspicious email in one dashboard.
  • Enhancing the automated response capabilities, such as directly initiating remediation processes or integrating with other cybersecurity tools, could further streamline the threat management process.
  • Implementing a feedback system where users can be informed about the outcome of their reported emails might encourage more proactive engagement.
  • the reporting tool is not as streamlined on mobile devices as it is on desktops. Enhancing mobile functionality would be beneficial
Likelihood to Recommend
With a mix of staff, teachers, and potentially older students handling sensitive information, PhishER’s reporting tools are ideal for creating a safer email environment. The platform’s ease of access and user-friendly reporting mechanism is particularly beneficial for dispersed workforces.
December 27, 2023

KnowBe4 PhishER Review

Verified User
Professional in Information Technology
Real Estate Company, 51-200 employees
Score 10 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
We utilize it to combat phish email threats. We currently receive daily phishing attempts via email all throughout the firm, from executive levels all the way down to our basic users. All of our mailboxes are currently monitored by KnowBe4 PhishER, and users also have the ability to report phish emails using the Phish Alert Button.
Pros and Cons
  • Flag Phish Emails
  • Allow administrative action on flag
  • Automated action on flagged items classified as phishing
Likelihood to Recommend
For any cloud based email environment, Microsoft 365 in our case, KnowBe4 PhishER is easy to setup for monitoring of incoming emails to the organization and help determine if the email is suspicious.
December 18, 2023

Save your security team from burnout

ES
Eric Sawyer
Director of Technology
New Hampshire Public Radio (Media Production, 51-200 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We have the Phish Alert Button as part of our subscription. My team was overwhelmed by the alerts sent by users. PhishER, uses automation to cut down on the amount of alerts we need to handle, leaving us with only the high priority or outliers.

The ROI is rapid and your security team will be able to focus on higher value tasks. It is worth the time to work with a KnowBe4 engineer to fine tune the policies for your environment.

Looking forward to seeing how KnowBe4 can integrate AI into this product for even more automation.

Pros and Cons
  • Reduces the noise vs signal ratio
  • Saves your team time
  • Encourages users to report phishing emails
  • Automates a task that your team hates doing
  • Improve AI for greater filtering
  • Better explanations of the policy settings and rules and how to tweak them for increased results
  • Automated gamification/rewards for end users to encourage reporting actual phishing
  • Automate sending executive level reports to maintain c-suite support and show ROI
Likelihood to Recommend
Saves your cyber team time. Eliminates something that your team doesn't like doing and will put off.

If you have the PAB for users to report phishing, then you need PhishER.
August 04, 2023

End users can help themselves!

Verified User
Manager in Information Technology
Financial Services Company, 51-200 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Easy to navigate for the end user. They are able to keep working in the same place and reporting phishing. In addition, we no longer have a clogged helpdesk ticket system with spam messages. Our IT can focus on the their tasks and leave spam to the system. In addition, we are able to easily doing monthly phishing tests increasing our cybersecurity training and awareness.
Pros and Cons
  • Keeps users in the same environment they are used to
  • Eliminates a lot of unnecessary helpdesk tickets
  • Allows for standardized phishing tests
  • Would be nice if it could analyze links and report back if a link is deemed safe.
Likelihood to Recommend
Great for integrations with email.
August 04, 2023

Unlocking Resources. KnowBe4 PhishER Simplifies Security

Keith Smith | TrustRadius Reviewer
Keith Smith
Director of Information Security & Compliance
Transparent BPO (Outsourcing/Offshoring, 1001-5000 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Phishing is a constant battle. PhishER helps augment our security team by giving us the ability to automate tasks. We're able to use the built-in AI and ML to review reported or suspected phishing messages and take action on them without the need for a Security Analyst to review each report individually.
Pros and Cons
  • Automation
  • Reporting
  • Security
  • Blacklist integration
Likelihood to Recommend
PhishER is a great tool for offloading tasks that would normally be handled by Security Analysts. When integrated with M365, it can automatically remove messages from the mailboxes of all users who received and reported a suspected message. This happens almost instantly with no need for someone to review and triage the report. And, since it can be based on confidence level, we don't worry about accidentally removing legitimate messages.
July 26, 2023

Phish ER to the rescue

SW
Steve Wingate
CISO (Chief Information Security Officer)
Ventra Health (Financial Services, 1001-5000 employees)
Score 10 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
We have a high rate of items reported via Phish ER (approximately 1000 a month) for a department of 2 people.
We setup rules in Phish Alert to respond to the most common items reported.
We have also setup rules to all the InfoSec team to focus on those emails that have not been responded to and/or actual threats.
By utilizing Phish ER we have been able to take reduce the amount of time spent addressing items report from 2 hours a day down to < 20 minutes.
Additionally with the recent update to allow us to push blocks to M365 we are seeing a large reduction in the number of spam and scam emails.
Pros and Cons
  • Minimal false positives
  • Ease of use in defining and designing flows
  • Ease of use in defining and designing response templates
  • Reporting - the reports in place are useful but allowing for more details would be helpful
  • More Quick Actions
Likelihood to Recommend
Ease of implementation.
Time savings.
Use in identifying trends.
July 25, 2023

Automated Email and Incident Response Solution!

Verified User
Employee in Information Technology
Mechanical Or Industrial Engineering Company, 501-1000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use KnowBe4 PhishER as part of our email analysis when users report emails to the team and also have some visibility what users report and how often. Some business problems this product addresses is the need to free up team resources to review emails on a daily basis. Another problem this product addresses is that it creates additional flexibility within the overall workflow. For example, when a ticket needs to get created internally for review, it's just one click of a button. This product helps automate some of our tasks that would normally be a manual effort.
Pros and Cons
  • Provides high level reporting
  • Integration with ticketing system such as Jira
  • The flexibility of creating rules that align with various workflows
  • Easy to use interface
  • The number of action items could be expanded to include more functionality
  • The option to schedule reports and send to various team members to eliminate the need to go into the console on a weekly or monthly basis
  • Additional widgets to expand the dashboard functionality
Likelihood to Recommend
The KnowBe4 PhishER is a great product that integrates well with the KnowBe4 security education platform and Jira service desk. Those two integrations make the general workflow effortless for someone who is in the product on a daily basis. This reduces manual work and allows our team to be productive and work on other projects.

This product also gives the team visibility on what is being reported and help determine if the email reported is localized or widespread throughout the organization. Meaning, depending on how many people report an email based on location and job roles.

This solution is well suited for an organization or team who would like to automate the guess work of determining if a email is a phish, spam, or safe. Additionally, have that one click response to the user who reported to get additional insight on if they did respond to the email or clicked on that was determined to be a real phishing email.

January 08, 2021

Gives you back hours of your life not having to analyze phishing emails again!

Verified User
Consultant in Marketing
Government Administration Company, 501-1000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We are already using KnowBe4 Security Training, and after some time we decided to add the KnowBe4 PhishER tool to be able to automatically get users' phishing email submissions scanned and sorted. It solves the problem of having to go through each of the users' submitted emails on their own and saves us a lot of time.
Pros and Cons
  • As an add-on to KnowBe4's Outlook plug-in, it can simplify researching phishing messages.
  • It has saved hours of time on our help desk and staff researching emails.
  • It takes human error out of the mix when researching messages.
  • It seems a lot of new messages are not categorized yet so newer phishing messages may have to be hand checked.
  • As an add-on to our existing KnowBe4 products, it was a good deal but on its own is expensive.
  • The interface is nice but makes it tough to get low-level detailed info.
Likelihood to Recommend
Almost every organization has problems with security and phishing emails, so if you've got users getting those emails, then this product is for you. Having to check into and respond to every user-submitted phishing message can sometime require a full-time employee, but this product makes it much easier and faster while saving time.
Return to navigation