KnowBe4 PhishER

Before KnowBe4 PhishER, our SOC analysts would manually investigate hundreds of suspect/phishing emails reported by end-users that would slip our perimeter defense. After implementing the PhishER SOAR platform, we could automate the process end-to-end by categorizing the reported emails as benign, spam, and threat emails, including integration with our ticketing platform. This has saved hundreds of our security analysts' hours and enabled them to act immediately on critical threat phishing emails.

We use it as a filtering tool that our end users can employ. Instructed to use the Phish Alert Button on ANY questionable emails allows us to get them into a habit of doubt if not an expected email. KnowBe4 PhishER analyzes and makes a determination on about 70% but holds for IT to review manually the rest. This can be adjusted but we have thresholds high to reduce risk of something slipping through. What this has accomplished for us two fold. 1. it makes it less time consuming to report a questionable email to IT and 2. allows the users to put into practice with a simple click all the "think before you click" training we use.

We use KnowBe4's PhishAlert button to encourage our associates to report potential phishing emails. Once the emails were reported, managing them through Microsoft's Spam filter was proving very time-consuming and cumbersome for the small IT team at our organization (review email, create block of domain and sender, etc.). Once we adopted KnowBe4 PhishER, it lessened the burden for our team. Additionally, the global blocklist feature provides an additional layer of protection for our organization.

We use KnowBe4 PhishER to help streamline the process of going through suspicious emails. The main problem being the time required to analyize and classify emails that come into the helpdesk as questionable. PhishER takes a good portion of that workload off of our staff and quickly classifies the known threats and spam emails so that we're only left with a handful of emails to manually go through. In addition the PhishER platform provides a ripping procedure to go out and remove those malicious emails from any other mailbox with those bad emails.

We use KnowBe4 PhishER to prioritize and streamline our response to reported phish alerts by our users. Once the user spots a phish and uses the phish alert icon, the email is sent to our PhishER platform. We have rules set up to spot and respond to certain reported emails such as SPAM and Clean emails. This takes a lot of burden off of our team and can really concentrate on real phishing emails. PhishER also highlights header information so we can look right where we need to look.

KnowBe4 PhishER has taken the place of our IT security and best practices training, as well as our phishing testing. The huge library of training material gives us a lot of flexibility with what we are training on and allows more focused targeted training efforts. There is also a huge library of phishing simulation templates ranging from all types of difficulties. This customization gives me the ability to hone in on things my team might actually see in the real world, and I can create or customize my own templates to be even more targeted.

KnowBe4 PhishER offers an "all in one" nice application for training, security, and testing exercises (e.g., "phishing"). My company has been using KnowBe4 PhishER for a year and half, and the internal feedback on this product is quite positive. The training sessions are interesting and keep the team's attention.

We began using KnowBe4 PhishER after we were the victim of a socially engineered phishing scam. We realized quickly that we need to strengthen the human firewall component of our organization. KnowBe4 PhishER offers a comprehensive application that would allow us to train our users to better protect our organization, and allow us to be proactive in our protection against potential threats.

We use it to help with phishing emails and to help educate our end users.

Being in the financial services industry, our employees have to always be on alert for phishing and social engineering scams. KnowBe4 PhishER gives our security team the visibility it needs to quickly identify and remove potential email-based threats. It protects our organization and saves us a lot of time, money, and headaches.

Having been the victim of ransomware attacks at my previous organization, I knew the importance of having my users trained to know the threats they would be facing in the digital world. That's why I chose KnowBe4 PhishER. We use KnowBe4 PhishER to train users on what a phishing attempt looks like, what to do if they see something that doesn't look right, and how to stay safe in a digital world. This keeps our network safer from outside threats.

I use KnowBe4 PhishER as a Security Orchestration, Automation and Response (SOAR) to manage, analyse, respond to the very high volume of emails potentially dangerous reported by my company users with the "Phish alert button." Thanks to this platform I was able to automate 90% of the workstream linked to the reported emails by end users, as the platform automatically analyse the message and classify it as a threats, spam or clean. Based on this classification and based also on tags assigned I'm able to identify the dangerous emails and react to prevent threats. Very useful is the ability to create rules and actions, so I can give an immediate response to the user that report the email as suspicious and confirm if is a threats, spam or not dangerous, in this way I improve also the ability of the users to recognise a phishing and spot it. I use this platform every day and few times a day to monitoring email reported to identify spear phishing, massive spam or massive phishing email, this allow me to take action to prevent threats and avoid that others users that receive similar r email click on dangerous link or enter credential. The platform is easy to implement and can be integrated with other service providers like Microsoft for example the possibility to activate the PhishRIP allow the deletion of dangerous email in the user recipient for example before they read it and take an action that can be dangerous if is not able to spot that is a threat.

We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is Phishing attacks through email on our internal users. We have got a Phish Alert Button (PAB) that is installed on every user's outlook. When our users detect any email suspicious, they just click on that Phish Alert Button to report that email. After the report, the security team gets notified by email and that reported email stores in the KnowBe4 PhishER Dashboard. Then our security team analyze that email and verify if it's a Phishing email or a SPAM or Threat etc., and based on that we take action. So in this way, we are protecting our company from Phishing attacks. It has inbuilt AI feature (PhishML) that automatically categories the email as Spam/Threat/Clear. It has others feature like PhishRIP that is helping us after we detect an email as phishing and then we have a option to remove that email from all users account in just 2-3 simple steps. Then we have PhishFlip feature that has the capacity to convert any real phishing attack to a Phishing Campaign to test in your environment.

We use KnowBe4 PhishER to allow staff to report emails they find suspicious to us for review. This works very well and helps to train people in scam and phishing emails. We also use it as a secondary defense system, we have a security system to block emails that are malicious or include profanity, etc. but when that email system doesn't block a certain email, KnowBe4 PhishER can be used by the staff member to report and quarantine the email. We can then use it to block any further emails from coming through.

The PhishER platform is an invaluable tool for our organization as it gives us real time insight when we are 'under attack' by a bad actor (or actors). We are able to identify trends, targeted users and methods used by the bad actors in trying to gain access or steal information. On top of this, the PhishRIP feature integrates with our GSuite and scans/quarantines other instances of reported emails that are deemed malicious.

The school has implemented the PhishER add-on for easily reporting suspicious emails. PhishER’s tools analyze these reports, reducing the workload on IT staff. PhishER streamlines the process of identifying, reporting, and responding to phishing attempts, thus saving valuable IT resources. PhishER is integrated into the school’s Gmail and IT security systems to prevent attacks through end user awareness and reporting.

We use it to enhance our email security with EAA. It helps to block unwanted emails that may be malicious to our organization.

We utilize it to combat phish email threats. We currently receive daily phishing attempts via email all throughout the firm, from executive levels all the way down to our basic users. All of our mailboxes are currently monitored by KnowBe4 PhishER, and users also have the ability to report phish emails using the Phish Alert Button.

Our primary use of KnowB4 PhishER is as a reception center for potential phishing emails received by our staff. It helps us analyze information about the email to determine whether it is is a threat or not, if so then pull the emails out of everyone's inbox, & block the senders. We also have the PhishER+ add-on which proactively blocks known malicious sender, links, & files.

The problems we are solving with PhishER are having a better system for staff to report potential phishing emails than writing emails to me & it also gives me better tools to evaluate the threat of reported emails.

When users use the PAB I can examine the potential phishing attempts and teach the AI system what is and is not legitimate email. I also use the PhishRip to strip phishing emails from the user's email box.

We use it to facilitate in the review of reported suspected phishing emails. It provides ease of review as all necessary information needed to determine a suspected email as phishing is readily available. It also provides automation for known false positives.

KnowBe4 PhishER perfectly solved our issues with responding to phishing emails. Previously, responding to malicious emails was a completely manual process, and we could not respond nearly as quickly or efficiently as we wanted to.
With KnowBe4 PhishER, the process is now highly automated, and we can remove phishing emails from dozens of inboxes in just a few clicks.
Our users appreciate it because they receive much quicker feedback on clean emails.
IT appreciates it because it makes our job a breeze and lets us focus on the important elements of incident response.
Management appreciates it because it helps keep our institution safer and gives them excellent reporting metrics.

We use it to automate the response and quarantine of phishing emails in conjunction with Office 365. This has greatly reduced the workload and response time of our security team. This has also helped improve the response to phishing emails to users to improve their awareness of what is and what is not a phishing email. One other use is the integration of webhooks to Microsoft Sentinel allow us to investigate incidents from Email

I love the AI behind this tool. It monitors and detects my phishing emails. It's an awesome tool that compliments our other endpoint solutions.

KnowBe4 PhishER provides us with 2 major tools. It firstly allows our users to quickly and easily submit suspicious emails for review. Saving both our end users and our Helpdesk time with discussing these emails directly. Secondly, it gives us the Phish RIP technology which allows us as IT to quickly remove email threats from all of our users inboxes at once. Much quicker than the built in tools that Microsoft provides with M365