KnowBE4 PhishER Review.
Before KnowBe4 PhishER, our SOC analysts would manually investigate hundreds of suspect/phishing emails reported by end-users that would …
KnowBe4 PhishER/PhishER Plus
KnowBe4 PhishER/PhishER Plus
Starting at $0.50 per month (billed annually) per seat
View PricingOverview
What is KnowBe4 PhishER/PhishER Plus?
PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…
Recent Reviews
KnowBe4 PhishER - security made simple
We use it as a filtering tool that our end users can employ. Instructed to use the Phish Alert Button on ANY questionable emails allows us …
KnowBe4 PhishER Review
We use KnowBe4's PhishAlert button to encourage our associates to report potential phishing emails. Once the emails were reported, …
KnowBe4 PhishER works for me!
We use KnowBe4 PhishER to help streamline the process of going through suspicious emails. The main problem being the time required to …
Happy with PhishER
We use KnowBe4 PhishER to prioritize and streamline our response to reported phish alerts by our users. Once the user spots a phish and …
Great training and testing tool
KnowBe4 PhishER has taken the place of our IT security and best practices training, as well as our phishing testing. The huge library of …
KnowBe4 PhishER - an easy and robust application
10 out of 10
March 13, 2024
KnowBe4 PhishER offers an "all in one" nice application for training, security, and testing exercises (e.g., "phishing"). My company has …
KnowBe4 PhishER has saved us $100K's
We began using KnowBe4 PhishER after we were the victim of a socially engineered phishing scam. We realized quickly that we need to …
KnowBe4 PhishER is a game changer
We use it to help with phishing emails and to help educate our end users.
Strong recommendation for KnowBe4 PhishER and all KnowBe4 products
Being in the financial services industry, our employees have to always be on alert for phishing and social engineering scams. KnowBe4 …
KnowBe4 PhishER is a great service
Having been the victim of ransomware attacks at my previous organization, I knew the importance of having my users trained to know the …
The fantastic KnowBe4 PhishER SOAR platform
I use KnowBe4 PhishER as a Security Orchestration, Automation and Response (SOAR) to manage, analyse, respond to the very high volume of …
Phishing Hero!
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is …
KnowBe4 PhishER - A great tool to use as a second line of defense
We use KnowBe4 PhishER to allow staff to report emails they find suspicious to us for review. This works very well and helps to train …
PhishER - Don't Phone Home Without It.
The PhishER platform is an invaluable tool for our organization as it gives us real time insight when we are 'under attack' by a bad actor …
How KnowBe4 PhishER/PhishER Plus Differs From Its Competitors
Time Savings
With KnowBe4 PhishER, we freed up incident response analysts' time to focus on more critical threat emails and associated mitigation actions. This has freed up analyst time, and they can now spend it on projects and security training, primarily related to cloud security technology. PhishER's quick …
Time Savings
By handling 75% of emails that are reported with the PAB, analyzing and replying to the reporter without intervention, KnowBe4 PhishER has saved us hours and hours of handling and research time. Even the 25% or less amount of emails we have to manual review are quicker because KnowBe4 PhishER has …
PhishER Capabilities
We also use KnowBe4 PhishER Blocklist which is really a timesaver as well for Spam emails that we notice are coming regularly, we can block with 1 click.
PhishER Capabilities
We have attempted to utilize PhishRIP, but I'm not sure it's found a lot of duplicates to pull from our email. We also utilize the KnowBe4 PhishER Blocklist and PhishML. We have not turned on PhishFlip at this point.
Time Savings
It's pretty simple. It saves time by managing whether emails are threats or spam. If a user clicks on a suspicious email and Knowbe4 knows that, then a technician doesn't have to review the email.
Time Savings
Everyday we are getting phishing, spam, and clean emails reported via the KnowBe4 phish alert button. Auto resolving spam and clean emails help us prioritize and streamline our response to valid phishing emails. This frees up our team for blocking real threats and investigating emails that might …
PhishER Capabilities
We use PhishRIP, PhishFlip, and PhihsER Blocklist. These tools help us keep everything in one place. PhishRIP pulls threats that were reported by users via the Phish Alert Button from other mailboxes to keep these from getting clicked on. PhishFlip helps us use real phishing emails as phishing …
Time Savings
As my team gets more used to using the PAB, they are less likely to reach out to me specifically to ask about security issues or phishing emails. Users are able to report issues without taking time to write a message, and can trust that if I need to see it I will.
PhishER Capabilities
I am currently using PhishRIP to collect and search for malicious emails. I am looking into other capabilities but am still working through onboarding myself and my team fully.
PhishRIP has helped me cut down on noise for email reporting and helps me be proactive in trying to quarnatine emails from …
Time Savings
Easy: more production and productivity time, and less hassling with a third-party IT Service to resolve issues.
Time Savings
With KnowBe4 PhishER's capability of recognizing threats when they are reported, the reports are automatically processed and employees receive real-time feedback to the reports they have made without us having to intervene. The automatic resolution of threats has been a huge timesaver, because it …
PhishER Capabilities
We are using PhishRip, and the blocklist capability currently. Being able to utilize the efforts of all employees to create a comprehensive blocklist has been great. The ability to search for threats and RIP them from inboxes has also been a huge help. Finding those identified threats and removing …
Time Savings
Once we added KnowBe4 PhishER plus with the global block list feature, it has cut down on the number of phishing emails that have made it into our end users email boxes.
PhishER Capabilities
We have used all the added features on our campus.
It has cut down greatly on the number of phishing emails that have hit our end users.
Time Savings
Instead of depending on individuals to alert our security team and handling incidents one email at a time, we can see & manage threats at the organization level, even removing them before one of our team members even sees an email.
PhishER Capabilities
The KnowBe4 PhishER blocklist is a critical feature for us.
Time Savings
We're able to have potential phishing emails go to a centralized dashboard. There, they can sit while we assign a rating and the possibility of a phishing attempt. This saves our organization time and energy so we can focus on the critical side of business. We're also able to let users know …
Time Savings
Considering that the company has more than 30,000 employees, the number of phishing emails received daily is very high. Only thanks to the KnowBe4 PhishER was it possible to manage the workload automatically, efficiently and quickly, drastically reducing the number of users who click on malicious …
PhishER Capabilities
My organisation have implemented the PhishML machine learning that allow to automatically categorise email and react based on type of category and tags, creating rules and actions is easy to respond to the users if the emails is a threats or spam or clean. We use also the PhishFlip very useful to …
Time Savings
It has saved a lot of time in terms of reporting emails from our user side and from the security team perspective as well. We got a centralized dashboard where we can see all reported emails instead of looking for reported emails in the outlook. With the AI feature of KnowBe4 PhishER, it is …
PhishER Capabilities
We have implemented PhishML for automatic categorization of reported emails. We have PhishRIP to see how many number of other users have received the same phishing email that one user reported, so that we can quarantine all emails. PhishFlip is helping us to test our users based on a real phishing …
Time Savings
KnowBe4 PhishER has allowed us to focus on other core security related issues by allowing users to report emails and having KnowBe4 PhishER identify what type of threat the email is and what must be done with it. We can then go through a update any we believe were incorrectly identified, but this …
PhishER Capabilities
We have implemented PhishRIP as it easily allows KnowBe4 PhishER to identify duplicate scam/phishing emails in other users mailboxes and quarantines them. We also use Blocklist regularly to ensure further emails from the same senders are blocked from our network and users mailboxes. We finally use …
Time Savings
The machine learning portion of PhishER does a great job of identifying good, bad, and suspicious actors and brings all of them to our attention in an easy to use dashboard. The reporting of bad actors is quick, and the response to mitigate is fast as well.
PhishER Capabilities
We currently utilize the PhishML to help us determine whether an email is a legitmate threat, spam, or otherwise suspicious. All without us having to individually review every submission. PhishRIP does the leg work of removing legitimate threats from all inboxes (or sub folders) automatically. …
Time Savings
Using KnowBe4 PhishER, our organization has streamlined the incident response process, distinguishing real threats from harmless emails efficiently. This precision has saved us substantial time, estimated at a 55% reduction in sifting through false positives. The time saved is reinvested into …
PhishER Capabilities
As of now, our organization hasn’t implemented any of these specific capabilities like PhishML, PhishRIP, PhishFlip, or the PhishER Blocklist from KnowBe4’s PhishER. However, recognizing their potential to automate threat remediation, transform threats into training, and customize security …
Time Savings
Again, don't have hard numbers but we have seen spam/malicious emails reduced, such that my team does not have to deal with them. I would estimate between a 10-20% reduction.
Time Savings
We have a very small team, and KnowBe4 PhishER has saved us time identifying and managing messages. With KnowBe4 PhishER, we have a comprehensive dashboard that allows us to take direct action and measures that also impact future potential attacks and attempts. Before KnowBe4 PhishER, we had …
PhishER Capabilities
We are using the standard capabilities of KnowBe4 PhishER, and with the help of KnowBe4 products specialists, have configured it optimally for our organization. We utilize KnowBe4 PhishER Blocklist to block undesired senders that based on their profile and messages, are obviously attacking us. We …
Time Savings
Yes we use the automated actions feature so that emails that are found with a high confidence to be "Clean" or "Spam" & not "Threat" are automatically resolved with an email automatically sent to the reporter notifying them of the findings. There is also an automated email sent to me in additional …
Time Savings
All the flagged emails from the PAB are gathered in one place. The system flags many emails using the filters and appropriately classifies them. Those it cannot automatically identify with certainly are presented into one page where I can systematically and quickly teach the system of new threats …
PhishER Capabilities
We have used PhishML, PhishRIP, and PhishER Blocklist. I have used PhishFliip on one occasion. The email that was flipped was too advanced of a test where all the users failed to catch it.
It has significantly reduced my time weeding through the 15,000 emails that would have come through my inbox …
Time Savings
honestly, not. PhishER has been a default repository of spam emails for some users.
PhishER Capabilities
since we are using an on premise Exchange infrastructure, we are only limited to use PhishML
Time Savings
Thanks to the built-in machine learning features, KnowBe4 PhishER has greatly increased our ability to identify and respond to reported emails. For example, we will automatically mark high-confidence phishing emails as malicious and begin the process to block the sender and quarantine the email …
PhishER Capabilities
PhishRIP and PhisEr Block Lists. We have not utilized PhishFlip at this time.
All threats are blocked and and PhishRIP is automated once a threat is found to remove all existing emails.
Time Savings
KnowBe4 PhishER has drastically cut down on our response time for those phishing attacks. It has also boosted everyone's participation because it's so easy to use.
Time Savings
I feel like I'm repeating myself, but it saves us time in the fact that end-users can simply submit an email for review and move on with their day where before it usually ended with a call to the Helpdesk. So this saves our end-users time and our Helpdesk's time
PhishER Capabilities
PhishRIP (best feature of them all by a long shot) PhishML (works for the most part, but in my experience, we have had issues with alot of false positives with the "clean" rating" PhishFlip (we've used it a couple of times, but it is not something that we utilize alot) We don't use the PhishER …
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Company-wide Incident Reporting (52)7.878%
- Live Response for Rapid Remediation (55)7.878%
- Centralized Dashboard (62)7.878%
- Machine Learning to Prevent Incidents (54)7.777%
Reviewer Pros & Cons
Verified User
Director in Information Technology
Information Technology & Services Company, 5001-10,000 employees
Verified User
Administrator in Information Technology
Government Relations Company, 51-200 employees
Pricing
3001-5000 Monthly Pricing Per Seat
$0.50
Cloud
per month (billed annually) per seat
2001-3000 Monthly Pricing Per Seat
$0.55
Cloud
per month (billed annually) per seat
1001-2000 Monthly Pricing Per Seat
$0.65
Cloud
per month (billed annually) per seat
Entry-level set up fee?
- Setup fee optional
For the latest information on pricing, visithttps://www.knowbe4.com/pricing-phisher
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Features
Incident Response Platforms
Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses
7.6
Avg 8.5
- 7.8Company-wide Incident Reporting(52) Ratings
Built-in enterprise-level ticketing system to leverage the knowledge of the entire workforce, not just the security team
- 6.8Integration with Other Security Systems(47) Ratings
Pre-built integration with other security systems like SIEM and threat intelligence
- 7.8Centralized Dashboard(62) Ratings
A central dashboard provides analysts with a clear look at the most important data
- 7.7Machine Learning to Prevent Incidents(54) Ratings
Incident prevention powered by machine learning with no human intervention
- 7.8Live Response for Rapid Remediation(55) Ratings
Live remediation response allows incident responders to initiate remediation from anywhere over secure connection
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is KnowBe4 PhishER/PhishER Plus?
PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.
PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.
PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.
KnowBe4 PhishER/PhishER Plus Features
Incident Response Platforms Features
- Supported: Company-wide Incident Reporting
- Supported: Integration with Other Security Systems
- Supported: Centralized Dashboard
- Supported: Machine Learning to Prevent Incidents
- Supported: Live Response for Rapid Remediation
Additional Features
- Supported: Automatic Message Prioritization
KnowBe4 PhishER/PhishER Plus Screenshots
KnowBe4 PhishER/PhishER Plus Video
Introduction to PhishER
KnowBe4 PhishER/PhishER Plus Integrations
KnowBe4 PhishER/PhishER Plus Competitors
KnowBe4 PhishER/PhishER Plus Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | Global |
KnowBe4 PhishER/PhishER Plus Downloadables
Frequently Asked Questions
PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.
Cofense Triage, Infosec IQ, and Proofpoint Threat Response Auto-Pull are common alternatives for KnowBe4 PhishER/PhishER Plus.
Reviewers rate Company-wide Incident Reporting and Centralized Dashboard and Live Response for Rapid Remediation highest, with a score of 7.8.
The most common users of KnowBe4 PhishER/PhishER Plus are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(160)Attribute Ratings
Reviews
(1-4 of 4)Companies can't remove reviews or game the system. Here's why
March 08, 2024
PhishER Protection that Works
Verified User
Executive in Information Technology
Non-profit Organization Management Company, 201-500 employees
We use it to enhance our email security with EAA. It helps to block unwanted emails that may be malicious to our organization.
- Blocks potential malicious emails
- Easy to use and setup
- Improves efficiency for my staff
- Improved metrics
- Improved dashboard
- Better reporting
Very well suited to help weed out potential bad actor emails. It also improves the efficiency of the team.
Getting metrics/reports/dashboarding for executives could be improved.
Getting metrics/reports/dashboarding for executives could be improved.
74%
7.4
- Company-wide Incident Reporting
- 80%8.0
- Integration with Other Security Systems
- 80%8.0
- Centralized Dashboard
- 50%5.0
- Machine Learning to Prevent Incidents
- 80%8.0
- Live Response for Rapid Remediation
- 80%8.0
- Don't have hard numbers
- We have seen malicious emails reduced and blocked
Again, don't have hard numbers but we have seen spam/malicious emails reduced, such that my team does not have to deal with them. I would estimate between a 10-20% reduction.
We have implemented PhishER Blocklist.
Microsoft is more comprehensive but still allows some threats to get through. PhishER helps to weed out those that Defender does not block.
4
They represent IT Infrastructure, IT Security, IT Networking and IT Leadership
1
Need to have basic IT skills, knowledge of software packages, knowledge of Microsoft technology, and knowledge of email phishing.
- Ability to secure our assests
- Ability to identify phishing
- Provide additional knowledge to our staff
- Ability to improve staff knowledge and have them be able to apply to their personal lives
- Not sure - want to ensure we leverage what we have at this time
It is a valuable tool in our ongoing cyber security strategy. KnowBe4 is a leader in this type of system and unless something else comes along not going to change
July 26, 2023
Phish ER to the rescue
CISO (Chief Information Security Officer)
Ventra Health (Financial Services, 1001-5000 employees)
Score 10 out of 10
Vetted Review
Verified User
We have a high rate of items reported via Phish ER (approximately 1000 a month) for a department of 2 people.
We setup rules in Phish Alert to respond to the most common items reported.
We have also setup rules to all the InfoSec team to focus on those emails that have not been responded to and/or actual threats.
By utilizing Phish ER we have been able to take reduce the amount of time spent addressing items report from 2 hours a day down to < 20 minutes.
Additionally with the recent update to allow us to push blocks to M365 we are seeing a large reduction in the number of spam and scam emails.
- Minimal false positives
- Ease of use in defining and designing flows
- Ease of use in defining and designing response templates
- Reporting - the reports in place are useful but allowing for more details would be helpful
- More Quick Actions
Ease of implementation.
Time savings.
Use in identifying trends.
94%
9.4
- Company-wide Incident Reporting
- 80%8.0
- Integration with Other Security Systems
- 100%10.0
- Centralized Dashboard
- 90%9.0
- Machine Learning to Prevent Incidents
- 100%10.0
- Live Response for Rapid Remediation
- 100%10.0
- Time saved has allowed for concentration in other areas.
- Response time to users has increased InfoSec profile in the company, making it easier to sell other initiatives. Also, this makes users more likely to report things
- The ability to see threats in 1 area allows for better recognition of trends or large scale attacks.
The automated responses with low cases of false positives has allowed my team to focus on the actual threats and/or unknowns. This has promoted users to be more willing to report things.
We have implemented - PhishER Blocklist.
This has helped reduce the amount of spam/scams that are getting to users.Very valuable.
In looking at other products I didn't find any that were as integrated with our email process.
We did implement Tessian as an email filtering/security product but I feel PhishER provides functionality that other email security tools cannot provide.
Just right.
Easy to get up and running quickly
Turn on Phish ER but wait to setup the automation tasks until you have reviewed your data to group and rollout types of emails.
No - we have not done any customization to the interface
No - we have not done any custom code
None - the available features met our needs
3
Information Security
Information Technology
2
Members of the InfoSec team with experience in email security.
- Ability to automate responses to users that report emails.
- Reporting and classification of reported emails.
- Integration with M365 to allow for adding emails, attachments, etc. to block list.
- Training users on legitimate emails and proper communications.
- Finding large scale phishing attacks.
- Understanding and reporting on most common scams/phish being seen by users.
- Use the data gathered to recognize frequent reporters.
- Use data gathered to understand common domains, etc. for DMARC and SPF implementation
Phish ER has reduced the time my team and I spend on reported emails by over 80%. With the volume of emails reported and a small team this is a must have.
No
- Integration with Other Systems
- Ease of Use
We have made reporting emails via Phish Alert a cornerstone message in our Awareness program, so anything we implemented had to work with the Phish Alert button.
I wouldn't change anything. The evaluation was straight forward and we chose to move forward with the best product.
Responses to questions were answered quickly and accurately.
I'm not sure if we purchased a premium support option. I don't think so.
No
I've had multiple support cases opened that I not only received an answer to the problem in question but also details on best practices that improved the underlying process.
The product is easy to setup, use and maintain. The product is stable and performs as expected
- The rules are easy to define and implement.
- The actions provided a way to create the email flows that I wanted.
- The templates are easy to design and allow for all the content that I wanted.
- None
July 25, 2023
KnowBe4 PhishER is Best in the Business
Use KnowBe4 PhishER for users to submit tickets to our helpdesk team. We have automation setup to process findings and pass the emails to the correct tech's for investigation.
- Custom Rules for Phishing Emails
- Custom Reports for IT and Exec
- Integrate with other Phishing providers
- More control on their rules or be able to script more
- Allow to remove emails from exchange server if they are phishing emails
Allowed us to automate our phish reporting for users and to catch the emails quicker with out a lot of time reviewing emails.
88%
8.8
- Company-wide Incident Reporting
- 80%8.0
- Integration with Other Security Systems
- 80%8.0
- Centralized Dashboard
- 100%10.0
- Machine Learning to Prevent Incidents
- 90%9.0
- Live Response for Rapid Remediation
- 90%9.0
- Helped to reduce the time to respond to emails for tech's
- allows helpdesk to work with users and not take away from Exchange Admin's
Being able to setup rules for emails that come in and deal with quickly has been a major help for us. To get the first email triage it and then take care of any of the other emails like this comes in to automate the process.
We have implemented KnowBe4 PhishER Blocklist so far and will be testing ML and Flip shortly.
Saved us time and money with reducing labor of repeated incoming emails.
- Proofpoint Insider Threat Management, Proofpoint Advanced Threat Protection, Proofpoint Cloud Account Defense, Proofpoint Digital Risk Protection, Barracuda Email Security Gateway, Aspire, from ServiceTitan and Cofense PhishMe
Yes, KnowBe4 stands up to the largest of vendors.
KnowBe4 has a lot of features and easy to configure for admin's. Adding the report button was the toughest part because there were so many different ways to deploy it to everyone. Once we figured out the direction the company wanted to go we hit the ground running and got the buttons installed in 30 minutes.
Make sure that you know what types of products you want to install button. It makes the installations easier. PhishER is great and has help cut down time with rules that process emails that are submitted with out our admin's having to touch each email that comes in.
Some - we have done small customizations to the interface
Once we had a little tour of PhishER we saw what we could do with the rules and customizations to make our lives easier. Start small and add as you go. We still need to tweak the customizations every couple of months because things change.
No - we have not done any custom code
Being able to customize some of the rules and action are great for us. Not just an out of the box piece of software that you can't fit to your business.
10
Server, Network, HelpDesk and Management use this product.
5
Users in the Server and HelpDesk teams use PhishER and need to know some basic email and filtering rules.
- Reporting emails from Outlook
- Rules to automatically take care of emails that come in regularly
- Rules to let the user know what is going on and not have a black hole that these email end up in.
- Lets us know when our Health Provider starts sending out emails to user, so we can notify users of this email and that its not spam.
- Helps us reward users that report emails that most to help protect our company
- Looking in some custom coding to send scams and virus email to other vendors for deep inspections
- Notify supervisors about their users and who clicks on everything for safety training.
We really like the cost and the coverage that PhishER brings to the company and being able to over lap with our email provider and spam filtering vendors has been a huge help.
No
- Scalability
- Integration with Other Systems
- Other
Being able to report emails and create rules to automate these was the biggest factor.
Being able to do so much with PhishER has made us question other vendors and why they aren't already doing what PhishER already does. That we use PhishER on top of what other vendors do because it's more customizable.
Work with support or rep for some basic steps, the rest is pretty straight foward.
- Implemented in-house
No
Change management was minimal
- Yara Rule Editor was the only issue we encountered
Support has been easy to get along with and easy to understand.
We didn't purchase premium support because the product is very easy to use.
No
Doing some customizing on our rules, support was able to listen to our needs and send us an example of what we needed promptly. Then they followed up with some suggestions to add to it like some other companies had already done.
Very easy to use and able to customize it to our companies needs and changing needs monthly.
- Phish button is the best thing we have used
- Rules are setup and changed around all the time depending on our environment
- Yara Rule Editor was a little tough to understand but it didn't take long.
- iPhone users button to be able to
Yes
It works well, iPhones have a little issue with interface but it's manageable.
PhishER is easy to intergrate with other providers but some of the other vendors don't play nice with PhishER
- Proofpoint
- Microsoft Exchange Online
Getting the systems to talk to each other was the toughest part, after that it was easy to update and exchange information.
- Exchange 2019
- Other Email Vendors
- Mail Relay
Some vendors support integration and some your have to manipulate it to work with powershell or coding.
- File import/export
- API (e.g. SOAP or REST)
- AppExchange or similar marketplace
Powershell
Know your vendors and talk to them about integration before you try to integrate PhishER.
July 25, 2023
KnowBe4 PhishER - Two Fins Up
With today's growing phishing attack surface, the need for a reporting and management system is inevitable. Manually managing phishing responses is cumbersome and downright unsafe. KnowBe4 PhishER allows us to quickly and safely manage our phishing reports.
- Detailed Phishing Indicators
- Automatic Categorization of Phishing Emails
- Multi-Admin Workflow
- Automated Responses
- Setup a bit tricky out of the box. I prefer self-service setups that are easy to use, but KnowBe4 PhishER does offer great service for their products.
KnowBe4 PhishER is suited for any decently sized organization. No matter the business, phishing is a severe threat today.
60%
6.0
- Company-wide Incident Reporting
- N/AN/A
- Integration with Other Security Systems
- 100%10.0
- Centralized Dashboard
- 100%10.0
- Machine Learning to Prevent Incidents
- N/AN/A
- Live Response for Rapid Remediation
- 100%10.0
- Less time coordinating phishing response
- Less time investigating reports
- Mitigating phishing risk more effectively
The PhishER identification tags are vital to our response team. The tags help us prioritize threats over spam or false positive reports.
PhishML, PhishRIP, and PhishER blocklist
All capabilities allow us to centrally manage our phishing response. Before we would have to manually track down emails in Microsoft's Security console, wasting a lot of time. All capabilities allow us to easily manage our phishing threats.
KnowBe4 PhishER is flexible. The configuration can be as simple or complex as you like. They also offers support for configuring the instance to your organization's specific needs.
Talk with your rep to ensure you are using the software to its fullest potential.
Some - we have done small customizations to the interface
Setting up workflows for your team is important. Having specific workflows for our criteria is helpful. Configuring quick actions also saves us a lot of time.
No - we have not done any custom code
N/a
160
Information technology (reviewers) and end users (reporters)
1
Information Technology with a focus on security
- Security
- Ransomware Mitigation
- Malicious email tracking
- Automated workflows
- Automated responses
- Machine learning
KnowBe4 PhishER fits nicely into their product suite. It is both affordable and useful.
No
- Cloud Solutions
- Integration with Other Systems
- Ease of Use
Ease of use is important for small businesses that don't have many resources to dedicate to a complicated solution.
I wouldn't change anything
KnowBe4 support is attentive to our needs. Our requests and concerns are always processed quickly.
No, the support is included in our current contract
No
They assisted us with setting up the more handy features, like quick actions.
The configuration is a bit complicated, but easy once you get the hang of it. Once configured, it is easy to manage our malicious emails that are reported by our staff.
- Quick actions
- Link tracking
- Initial setup