Skip to main content
TrustRadius
KnowBe4 PhishER

KnowBe4 PhishER

Overview

What is KnowBe4 PhishER?

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…

Read more
Recent Reviews

Phishing Hero!

10 out of 10
March 13, 2024
Incentivized
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is …
Continue reading
Read all reviews

How KnowBe4 PhishER Differs From Its Competitors

Time Savings

With KnowBe4 PhishER, we freed up incident response analysts' time to focus on more critical threat emails and associated mitigation actions. This has freed up analyst time, and they can now spend it on projects and security training, primarily related to cloud security technology. PhishER's quick …
Continue reading

Time Savings

By handling 75% of emails that are reported with the PAB, analyzing and replying to the reporter without intervention, KnowBe4 PhishER has saved us hours and hours of handling and research time. Even the 25% or less amount of emails we have to manual review are quicker because KnowBe4 PhishER has …
Continue reading

PhishER Capabilities

We have attempted to utilize PhishRIP, but I'm not sure it's found a lot of duplicates to pull from our email. We also utilize the KnowBe4 PhishER Blocklist and PhishML. We have not turned on PhishFlip at this point.
Continue reading

Time Savings

It's pretty simple. It saves time by managing whether emails are threats or spam. If a user clicks on a suspicious email and Knowbe4 knows that, then a technician doesn't have to review the email.
Continue reading

Time Savings

Everyday we are getting phishing, spam, and clean emails reported via the KnowBe4 phish alert button. Auto resolving spam and clean emails help us prioritize and streamline our response to valid phishing emails. This frees up our team for blocking real threats and investigating emails that might …
Continue reading

PhishER Capabilities

We use PhishRIP, PhishFlip, and PhihsER Blocklist. These tools help us keep everything in one place. PhishRIP pulls threats that were reported by users via the Phish Alert Button from other mailboxes to keep these from getting clicked on. PhishFlip helps us use real phishing emails as phishing …
Continue reading

Time Savings

As my team gets more used to using the PAB, they are less likely to reach out to me specifically to ask about security issues or phishing emails. Users are able to report issues without taking time to write a message, and can trust that if I need to see it I will.
Continue reading

PhishER Capabilities

I am currently using PhishRIP to collect and search for malicious emails. I am looking into other capabilities but am still working through onboarding myself and my team fully.
PhishRIP has helped me cut down on noise for email reporting and helps me be proactive in trying to quarnatine emails from …
Continue reading

Time Savings

With KnowBe4 PhishER's capability of recognizing threats when they are reported, the reports are automatically processed and employees receive real-time feedback to the reports they have made without us having to intervene. The automatic resolution of threats has been a huge timesaver, because it …
Continue reading

PhishER Capabilities

We are using PhishRip, and the blocklist capability currently. Being able to utilize the efforts of all employees to create a comprehensive blocklist has been great. The ability to search for threats and RIP them from inboxes has also been a huge help. Finding those identified threats and removing …
Continue reading

Time Savings

Instead of depending on individuals to alert our security team and handling incidents one email at a time, we can see & manage threats at the organization level, even removing them before one of our team members even sees an email.
Continue reading

Time Savings

We're able to have potential phishing emails go to a centralized dashboard. There, they can sit while we assign a rating and the possibility of a phishing attempt. This saves our organization time and energy so we can focus on the critical side of business. We're also able to let users know …
Continue reading

Time Savings

Considering that the company has more than 30,000 employees, the number of phishing emails received daily is very high. Only thanks to the KnowBe4 PhishER was it possible to manage the workload automatically, efficiently and quickly, drastically reducing the number of users who click on malicious …
Continue reading

PhishER Capabilities

My organisation have implemented the PhishML machine learning that allow to automatically categorise email and react based on type of category and tags, creating rules and actions is easy to respond to the users if the emails is a threats or spam or clean. We use also the PhishFlip very useful to …
Continue reading

Time Savings

It has saved a lot of time in terms of reporting emails from our user side and from the security team perspective as well. We got a centralized dashboard where we can see all reported emails instead of looking for reported emails in the outlook. With the AI feature of KnowBe4 PhishER, it is …
Continue reading

PhishER Capabilities

We have implemented PhishML for automatic categorization of reported emails. We have PhishRIP to see how many number of other users have received the same phishing email that one user reported, so that we can quarantine all emails. PhishFlip is helping us to test our users based on a real phishing …
Continue reading

Time Savings

KnowBe4 PhishER has allowed us to focus on other core security related issues by allowing users to report emails and having KnowBe4 PhishER identify what type of threat the email is and what must be done with it. We can then go through a update any we believe were incorrectly identified, but this …
Continue reading

PhishER Capabilities

We have implemented PhishRIP as it easily allows KnowBe4 PhishER to identify duplicate scam/phishing emails in other users mailboxes and quarantines them. We also use Blocklist regularly to ensure further emails from the same senders are blocked from our network and users mailboxes. We finally use …
Continue reading

Time Savings

The machine learning portion of PhishER does a great job of identifying good, bad, and suspicious actors and brings all of them to our attention in an easy to use dashboard. The reporting of bad actors is quick, and the response to mitigate is fast as well.
Continue reading

PhishER Capabilities

We currently utilize the PhishML to help us determine whether an email is a legitmate threat, spam, or otherwise suspicious. All without us having to individually review every submission. PhishRIP does the leg work of removing legitimate threats from all inboxes (or sub folders) automatically. …
Continue reading

Time Savings

Using KnowBe4 PhishER, our organization has streamlined the incident response process, distinguishing real threats from harmless emails efficiently. This precision has saved us substantial time, estimated at a 55% reduction in sifting through false positives. The time saved is reinvested into …
Continue reading

PhishER Capabilities

As of now, our organization hasn’t implemented any of these specific capabilities like PhishML, PhishRIP, PhishFlip, or the PhishER Blocklist from KnowBe4’s PhishER. However, recognizing their potential to automate threat remediation, transform threats into training, and customize security …
Continue reading

Time Savings

Again, don't have hard numbers but we have seen spam/malicious emails reduced, such that my team does not have to deal with them. I would estimate between a 10-20% reduction.
Continue reading

Time Savings

We have a very small team, and KnowBe4 PhishER has saved us time identifying and managing messages. With KnowBe4 PhishER, we have a comprehensive dashboard that allows us to take direct action and measures that also impact future potential attacks and attempts. Before KnowBe4 PhishER, we had …
Continue reading

PhishER Capabilities

We are using the standard capabilities of KnowBe4 PhishER, and with the help of KnowBe4 products specialists, have configured it optimally for our organization. We utilize KnowBe4 PhishER Blocklist to block undesired senders that based on their profile and messages, are obviously attacking us. We …
Continue reading

Time Savings

Yes we use the automated actions feature so that emails that are found with a high confidence to be "Clean" or "Spam" & not "Threat" are automatically resolved with an email automatically sent to the reporter notifying them of the findings. There is also an automated email sent to me in additional …
Continue reading

Time Savings

All the flagged emails from the PAB are gathered in one place. The system flags many emails using the filters and appropriately classifies them. Those it cannot automatically identify with certainly are presented into one page where I can systematically and quickly teach the system of new threats …
Continue reading

PhishER Capabilities

We have used PhishML, PhishRIP, and PhishER Blocklist. I have used PhishFliip on one occasion. The email that was flipped was too advanced of a test where all the users failed to catch it.
It has significantly reduced my time weeding through the 15,000 emails that would have come through my inbox …
Continue reading

Time Savings

Thanks to the built-in machine learning features, KnowBe4 PhishER has greatly increased our ability to identify and respond to reported emails. For example, we will automatically mark high-confidence phishing emails as malicious and begin the process to block the sender and quarantine the email …
Continue reading

Time Savings

I feel like I'm repeating myself, but it saves us time in the fact that end-users can simply submit an email for review and move on with their day where before it usually ended with a call to the Helpdesk. So this saves our end-users time and our Helpdesk's time
Continue reading

PhishER Capabilities

PhishRIP (best feature of them all by a long shot) PhishML (works for the most part, but in my experience, we have had issues with alot of false positives with the "clean" rating" PhishFlip (we've used it a couple of times, but it is not something that we utilize alot) We don't use the PhishER …
Continue reading

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 5 features
  • Live Response for Rapid Remediation (55)
    7.8
    78%
  • Company-wide Incident Reporting (52)
    7.8
    78%
  • Centralized Dashboard (62)
    7.8
    78%
  • Machine Learning to Prevent Incidents (54)
    7.7
    77%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing

3001-5000 Monthly Pricing Per Seat

$0.50

Cloud
per month per seat

2001-3000 Monthly Pricing Per Seat

$0.55

Cloud
per month per seat

1001-2000 Monthly Pricing Per Seat

$0.65

Cloud
per month per seat

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.knowbe4.com/pricing-phisher

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Incident Response Platforms

Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses

7.6
Avg 8.5
Return to navigation

Product Details

What is KnowBe4 PhishER?

PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.

PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.

KnowBe4 PhishER Features

Incident Response Platforms Features

  • Supported: Company-wide Incident Reporting
  • Supported: Integration with Other Security Systems
  • Supported: Centralized Dashboard
  • Supported: Machine Learning to Prevent Incidents
  • Supported: Live Response for Rapid Remediation

Additional Features

  • Supported: Automatic Message Prioritization

KnowBe4 PhishER Screenshots

Screenshot of This is a diagram of the PhishER workflow. Reviewing the PhishER workflow before getting started will provide an understanding of how PhishER, PhishRIP and PhishFlip work.Screenshot of The Reports screen will display five different dashboards of information.Screenshot of When entering the PhishER platform, the first screen that appears is the Dashboard. Here, a quick overview of the PhishER platform will appear.

KnowBe4 PhishER Video

Introduction to PhishER

KnowBe4 PhishER Integrations

KnowBe4 PhishER Competitors

KnowBe4 PhishER Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Supported CountriesGlobal

KnowBe4 PhishER Downloadables

Frequently Asked Questions

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Cofense Triage, Infosec IQ, and Proofpoint Threat Response Auto-Pull are common alternatives for KnowBe4 PhishER.

Reviewers rate Company-wide Incident Reporting and Centralized Dashboard and Live Response for Rapid Remediation highest, with a score of 7.8.

The most common users of KnowBe4 PhishER are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(160)

Attribute Ratings

Reviews

(1-5 of 5)
Companies can't remove reviews or game the system. Here's why
July 28, 2023

Great for streamlining phishing response.

Verified User
Analyst in Other
Computer Software Company, 201-500 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Currently KnowBe4 PhishER is being used across all departments within the organization. This has addressed the business problem of suspected phishing remediation. Through machine learning, integrations with VirusTotal, the PhishAlert button, and the ability to automatically respond to messages, we have drastically slashed the amount of time that analysts and end-users spend in phishing responses.
Pros and Cons
  • Machine learning evaluation
  • Automation of response
  • Setting custom thresholds
  • Quarantining messages before end-users read them
  • Search inboxes for similar messages
  • Custom rules can be bothersome to create
  • Inability to log directly into PhishER, must go through main console first
  • PhishRIP can require too much information when searching for similar messages
Likelihood to Recommend
PhishER works wonderfully for organizations in which end-users are prone to reporting all messages. By having automated responses it allows for non-malicious messages to be responded to without requiring analyst intervention. The PhishRIP functionality can be less useful because it requires a minimum of two fields to be selected for searching. This can result in issues where a threat actor has modified the body or subject to add a more personal touch to the malicious email.
Most Important Features
  • Automated response
  • Integration with Virus Total
  • PhishRIP
KnowBe4 PhishER Feature Ratings
Incident Response Platforms (4)
70%
7.0
Company-wide Incident Reporting
60%
6.0
Integration with Other Security Systems
80%
8.0
Centralized Dashboard
60%
6.0
Live Response for Rapid Remediation
80%
8.0
Return on Investment
  • Less analyst time spent on phishing emails
  • Reduced number of missed messages
  • PhishRIP has allowed phishing messages to be removed before they have been read
Time Savings
PhishER has saved my organization time through the incorporation of automated responses and the ability to manage quaranting messages and block lists from within the PhishER console and not needing to log into another dash board.
PhishER Capabilities
My organization has utilized PhishML, PhishRIP, and PhishER Blocklist with great success.
PhishML has allowed me to drastically reduce the number of messages my staff review on a daily basis, and provide after hours responses to colleagues working different shifts or checking messages after hours. PhishRIP has allowed me to remove threatening messages that have been reported before all recipients have read them, and this has combined with the PhishER Blocklist to eliminate recurring threats.
Alternatives Considered
I have previously used Infosec IQ and Mimecast for similar purposes. Infosec IQ allowed my users to report messages, but the interface was clumsy and there weren't any features to allow me to quarantine or block message from within that dashboard. Mimecast was similar, but the granularity of the controls was overwhelming for new staff.
February 07, 2023

Quick and easy to implement with large returns in value

Verified User
Consultant in Information Technology
Computer Software Company, 201-500 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Helps address the increasing threat of phishing attacks. The product addresses business problems such as preventing sensitive information from falling into the hands of attackers, maintaining the security of corporate data, and preserving the trust of customers and employees. The product can be used to detect and respond to phishing attempts across a wide range of channels, including email, web, and social media
Pros and Cons
  • Phishing threat detection and response
  • Centralized management
  • Employee training
  • Integration with other tools
  • Mobile support
  • Improved reporting and analytics
Likelihood to Recommend
KnowBe4 PhishER provides a centralized platform for managing phishing incidents, making it well suited for organizations with a large number of employees who are at risk of receiving phishing emails. Great for being able to just set up and forget, the support staff can help with the initial setup to have reoccurring tests
Most Important Features
  • Threat Detection
  • Incident response
  • Phishing simulation
KnowBe4 PhishER Feature Ratings
Incident Response Platforms (5)
76%
7.6
Company-wide Incident Reporting
90%
9.0
Integration with Other Security Systems
20%
2.0
Centralized Dashboard
90%
9.0
Machine Learning to Prevent Incidents
90%
9.0
Live Response for Rapid Remediation
90%
9.0
Return on Investment
  • Reduction in users falling for phishing
  • Identifying staff that need more training
Alternatives Considered
Much easier interface to use, great support. Very easy to set up and works out of the box. Great content and new videos are constantly being added. Themed phishing around holidays is a great idea and has made users far more aware. Phishing based on current events in the news is a great idea.
February 02, 2023

Great Product Suite

Verified User
Administrator in Information Technology
Hospital & Health Care Company, 201-500 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Our organization utilizes PhishER in several ways. We utilize PhishML to assist with our research of messages and our prioritization of the messages we deem as "Vaild". We utilize PhishRIP to assist our O365 quarantining of new incoming messages so that our users experience less spam. We have integrated the Phish Alert button across all our Office 2016 users as well as into our Office 365 users so that they can reported suspected phishing emails to our team. We have also started using PhishFLIP to replace active Phishing attempts into simulated spoofs to test user responses.
Pros and Cons
  • Phish Alert button is a simple way for users to report phishing attempts.
  • PhishFLIP really increases the look and feel of simulated attempts that we test our users with.
  • PhishRIP cut down on our average email/user counts and have increased our quarantining abilities.
  • Scheduling of simulated emails.
  • Setup of the rules to categorize messages
Likelihood to Recommend
KnowBe4 is an amazing company and has several products that can really increase your Situational Awareness training program. PhishER is just a suite of programs that assist in user knowledge for phishing attempts, and the filtering, analyzing and quarantining of theose Real Phishing attempts. It's an amazing product that should be in all IT Team's arsenal.
Most Important Features
  • Phish Alert Button (PAB)
  • PhishFLIP
  • PhishRIP
KnowBe4 PhishER Feature Ratings
Incident Response Platforms (5)
90%
9.0
Company-wide Incident Reporting
90%
9.0
Integration with Other Security Systems
100%
10.0
Centralized Dashboard
80%
8.0
Machine Learning to Prevent Incidents
90%
9.0
Live Response for Rapid Remediation
90%
9.0
Return on Investment
  • Having this system in place has assisted in keeping 250+ users knowledgeable and trained them to report phishing attempts.
  • Assisted our Cyber Liability Insurance acceptance.
April 19, 2022

Have a phishing issue? Give PhishER a try!

DT
Dan Tesch
Director, IT
Legacy.com (Online Media, 201-500 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We had a fairly serious phishing problem and needed to combine some awareness training along with simulated phishing and quarantine capability and PhishER from KnowBe4 checked all the boxes.
Pros and Cons
  • PhishER's connection to our O365 environment is good, it allows users to click the Phish Alert button to report a phish and this kicks off a back-end action that scans all users' inboxes and quarantines similar phishing emails it finds.
  • The KnowBe4 security awareness training, the Phish Alert Button, and simulated phishing are all tightly integrated, it's a "system" rather than ad hoc solutions.
  • #1 thing KnowBe4 needs to improve is using their PhishML to proactively find and quarantine phishing emails rather than only relying on the reactive click by a user. There's still a huge risk hole they are not filled by not providing this functionality.
Likelihood to Recommend
I think KnowBe4's customer service is outstanding, we have a "Customer Success Manager" who is very helpful and proactive and support was also very helpful during our implementation.
Most Important Features
  • Security Awareness Training
  • Simulated Phishing and reporting dashboard
  • Phish Alert Button quarantine process
KnowBe4 PhishER Feature Ratings
Incident Response Platforms (5)
36%
3.6
Company-wide Incident Reporting
N/A
N/A
Integration with Other Security Systems
N/A
N/A
Centralized Dashboard
100%
10.0
Machine Learning to Prevent Incidents
80%
8.0
Live Response for Rapid Remediation
N/A
N/A
Return on Investment
  • Employees needed a way to report phishing to IT but rather than simply forwarding a suspicious mail, the PhishER system turns the whole thing into an automated process.
  • Combining the Awareness Training, simulated phishing, and Phish Alert Button has conditioned our employees on how to appropriately respond to suspected phishes.
  • We implemented KnowBe4 and PhishER before our cyber liability insurance company began asking about things like this, I now have dashboards and stats I can snapshot to demonstrate our anti-phishing ecosystem's effectiveness.
Alternatives Considered
We evaluated Proofpoint and two other phishing-related products but I was disappointed by the high rate of false-positive quarantines, this makes for a poor end-user experience and complaints to IT.
Other Software Used
August 11, 2021

Time saver!

OC
Oliver Cabrejo
Computer and Information Systems Manager
Norbec (Construction, 201-500 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
KnowBe4 is currently used throughout the organization. It helps us categorize and quarantine all threats that arrive in our users' email inboxes. By integrating KnowBe4 into our security infrastructure, we have found that it has saved us time and money. It helps us save time and allows us to focus on more important issues and projects.
Pros and Cons
  • Machine learning
  • Automating threat management
  • Alert configuration
  • Better integration to outlook
  • Better explanations on email structure presentation
  • More training available regarding email threat analysis
Likelihood to Recommend
This is a necessity if you don't want to find yourself dealing with all the reported threats one by one.
You will see the benefits from day one and the more the machine learning algorithm is fed, the better it gets.
An example scenario is when an employee reports a threat through the add-in installed and deployed on all Outlook clients. The threat is then sent to the PhishER platform, where the administrator inspects it, analyzes it and takes action based on the results.
If it is a threat, it is retained and used as an example to feed the machine learning algorithm, if not, the email is released and sent back to the user with a comment telling the user it's a safe email.
Most Important Features
  • Machine learning
  • Automation
  • Quick actions allow you to easily start a series of actions from one click of a button
KnowBe4 PhishER Feature Ratings
Incident Response Platforms (5)
96%
9.6
Company-wide Incident Reporting
100%
10.0
Integration with Other Security Systems
80%
8.0
Centralized Dashboard
100%
10.0
Machine Learning to Prevent Incidents
100%
10.0
Live Response for Rapid Remediation
100%
10.0
Return on Investment
  • Time saver
  • Allows us to focus on more important matters
  • Threat management
Alternatives Considered
To be honest, this is the first time I have used a tool like this. So I can't compare it to other tools that offer this kind of service. I did do my due diligence and based on several comparative studies and research, I decided to go with KnowBe4 because they are the industry leader.
Other Software Used
Jira Service Management (Jira Service Desk), Microsoft Power BI, Epicor Eclipse
Return to navigation