Skip to main content
TrustRadius
KnowBe4 PhishER

KnowBe4 PhishER

Overview

What is KnowBe4 PhishER?

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…

Read more
Recent Reviews

Phishing Hero!

10 out of 10
March 13, 2024
Incentivized
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 5 features
  • Live Response for Rapid Remediation (55)
    7.8
    78%
  • Company-wide Incident Reporting (52)
    7.8
    78%
  • Centralized Dashboard (62)
    7.8
    78%
  • Machine Learning to Prevent Incidents (54)
    7.7
    77%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing

3001-5000 Monthly Pricing Per Seat

$0.50

Cloud
per month per seat

2001-3000 Monthly Pricing Per Seat

$0.55

Cloud
per month per seat

1001-2000 Monthly Pricing Per Seat

$0.65

Cloud
per month per seat

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.knowbe4.com/pricing-phisher

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Incident Response Platforms

Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses

7.6
Avg 8.5
Return to navigation

Product Details

What is KnowBe4 PhishER?

PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.

PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.

KnowBe4 PhishER Features

Incident Response Platforms Features

  • Supported: Company-wide Incident Reporting
  • Supported: Integration with Other Security Systems
  • Supported: Centralized Dashboard
  • Supported: Machine Learning to Prevent Incidents
  • Supported: Live Response for Rapid Remediation

Additional Features

  • Supported: Automatic Message Prioritization

KnowBe4 PhishER Screenshots

Screenshot of This is a diagram of the PhishER workflow. Reviewing the PhishER workflow before getting started will provide an understanding of how PhishER, PhishRIP and PhishFlip work.Screenshot of The Reports screen will display five different dashboards of information.Screenshot of When entering the PhishER platform, the first screen that appears is the Dashboard. Here, a quick overview of the PhishER platform will appear.

KnowBe4 PhishER Video

Introduction to PhishER

KnowBe4 PhishER Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Supported CountriesGlobal

KnowBe4 PhishER Downloadables

Frequently Asked Questions

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Cofense Triage, Infosec IQ, and Proofpoint Threat Response Auto-Pull are common alternatives for KnowBe4 PhishER.

Reviewers rate Company-wide Incident Reporting and Centralized Dashboard and Live Response for Rapid Remediation highest, with a score of 7.8.

The most common users of KnowBe4 PhishER are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(160)

Attribute Ratings

Reviews

(1-25 of 69)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Categorization of suspect emails to Benign, SPAM and Threat.
  • Integration to VirusTotal, Ticketing platform.
  • Smart Dashboards.
  • Canned auto - response email to end-users.
  • AI/ML algorithm could be improved to reduce false positives and increase auto-resolved suspect emails.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Automatically evaluates reported emails
  • Once it determines a threat, it pulls the email from all other mailboxes and quarantines them
  • One button block list can be set up for repeat senders
  • If an email is determined to be clean, a button to notify the reporter that it was clean and that they could find it in the deleted folder, with reference to the email would be nice.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
  • Learns which emails are phishing and which are legitimate
  • Customizable emails back to associates who report spam or clean emails as phishing
  • Clear view into what has been reported
  • I haven't found a good use case for Rooms feature yet
  • I haven't had to build any custom rules yet, either
March 15, 2024

Happy with PhishER

Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Automates phish report response
  • Highlights email header information
  • Saves time for our team.
  • The rule setup could be easier to follow
  • Make it so you don't have to click back and forth with manually looking at emails
  • Make the email quarantine longer than 30 days.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
  • Huge library of media
  • Real world examples and frequent updates
  • Communicative account managers
  • It can be a bit tedious to see specific results of phishing test (per user results)
Henry W. Piel | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
  • Customer Support; especially when we brough the application on board. The attention to detail, instruction, and help KnowBe4 team gave us is quite good!
  • A wide variety of trainings, over a multitude of topics.
  • Phishing Tests; "set it and forget" with metrics!
  • For start-up biotech/pharmaceuticals, I think KnowBe4 PhishER is the perfect addition!
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Simulated Phishing Campaigns
  • End-User Training
  • Security Analysis
  • Ability to call back threat emails
  • When customizing simulated phishing campaign emails the ability to add a upload a custom image would be helpful.
  • Some of the menu options take a bit to get used to - not as intuitive as I'd like. You select a user, then you can choose from a different menu to add them to a group. Once you know, it is not difficult - but not as easy as it should be.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • KnowBe4 PhishER helps end users to easily report possible spam or phishing emails with PAB
  • KnowBe4 PhishER helps cut down on review time phish emails
  • KnowBe4 PhishER phish RIP allows us to quickly remove dangerous email from other users in our environment
  • To be able to search in the block list page instead of having to manually scroll to find something
Score 9 out of 10
Vetted Review
Verified User
Incentivized
  • Allows users to notify admins of a phishing email
  • Helps us train our users on proper email usage
  • Gives us information on what kind of emails are being reported
  • KnowBe4 PhishER could have a simpler login process
  • Email notifications would be nice
  • A phish confidence level on the emails reported could be useful
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Analysis and classification of phishing emails using machine learning
  • Response to reporting users with personalised emails template
  • Automatic response and actions using integration with Microsoft
  • Good dashboard with reporting and KPI
  • Integration with others product to improve scan and analysis
  • It improves users' security awareness and behavior as receiving an immediate response with the analysis result improves the ability to recognize a phishing email
  • The lack of recognising email dangerous with QR code
  • Improve the alert/notification system to automatically advise the platform administrator in case of massive threats.
  • Decrease in uncategorized emails
March 13, 2024

Phishing Hero!

Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Phish Alert Button works well on suspicious email reporting. So in case of any phishing attack, our users can report the email directly to KnowBe4 PhishER dashboard and our team can take care of it then.
  • The PhishML feature automatically categories the reported emails based on email characteristics like Clean/Spam/Threat, so it makes our security job easy.
  • The PhishRIP feature is helping us to remove a suspicious email from all user's outlooks in just a few clicks and with this feature, we are building a strong security posture.
  • KnowBe4 PhishER integration with VirusTotal is helping us to scan any URL and documents that seems suspicious to us.
  • A detailed analysis of reported emails by using AI techniques.
  • Automatic quarantine of 100% sure phishing emails without any human interaction.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
  • Reporting Emails
  • Blocking Domains and Senders
  • Virus Total Built In
  • Discussion with other Admins
  • Ability to discuss with User (Not Just Admins)
  • Ability to Block Senders and Domains for Longer than 60 days
  • Ability to view information such as IP Address, Estimated Location at a glance
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • The machine based learning does a great job of correctly identifying safe vs. malicious emails.
  • PhishRIP does an excellent job of finding and quarantining similar emails from other users accounts.
  • The reports give us a real time insight into trends and campaigns launched by bad actors.
  • Somtimes the PAB (or Phish Hook) has to have its permissions revalidated. This is a quick fix, but takes some knowledge.
  • I honestly can't think of any other shortcomings at this time.
  • See #1
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • The platform offers a simple, one-click reporting button for end-users.
  • Allows teachers to report suspicious emails without needing technical expertise.
  • The IT department is able to review all suspicious email in one dashboard.
  • Enhancing the automated response capabilities, such as directly initiating remediation processes or integrating with other cybersecurity tools, could further streamline the threat management process.
  • Implementing a feedback system where users can be informed about the outcome of their reported emails might encourage more proactive engagement.
  • the reporting tool is not as streamlined on mobile devices as it is on desktops. Enhancing mobile functionality would be beneficial
December 27, 2023

KnowBe4 PhishER Review

Score 10 out of 10
Vetted Review
Verified User
  • Flag Phish Emails
  • Allow administrative action on flag
  • Automated action on flagged items classified as phishing
Jeff Boivin | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Phish Alert Button is easy for our staff to use & it is being used frequently
  • The ML, AI, & VirusTotal analytics on reported emails are very helpful in evaluating whether an email is truly a threat or not
  • The Phish RIP feature is useful for pulling phishing emails out of other staff members inboxes when a phishing email went to multiple people but not everyone reported it
  • PhishER+ is a great proactive tool for keeping out known threats
  • PhishRIP is successful at pulling most emails out of inboxes but sometimes it is not despite running the query in multiple ways. I will run a message trace in Microsoft Exchange & find 10 emails but then sometimes I am only able to find 8 to delete w/ PhishRIP. If it could somehow integrate with Microsoft Exchange Message Trace to make it easier to pull them all that would be helpful
  • I would like to see a way for staff to report Smishing messages from their phone
  • For PhishER+ I would like to the option for entries onto the BlockList to remain permanently. I know there is a limit to how many can be added but that limit is being increased. In Microsoft Blocklist if you manually add one you have the option to have it never be removed.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Identifies potential phishing attempts using the different filters and Virus total.
  • Ripping phishing email from users email box.
  • There are many times phishing emails come in that I want to rip but cannot do to how the emails come in. The headers, subject line, receiver or sender vary slightly where the system cannot distinguish between the differences.
Richard Fantozzi, Jr | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Identify clean, spam or bad emails
  • Speed of identification and response
  • Automation of reporting to integrated systems
  • Provdining supporting evidence for bad emails
  • Initial setup possible with a default setup that utilizes all functionality that could be turned off/on and modified per customers needs
  • Supporting multiple actions per foiund email instead of multiple rules needed to fire an email and a webhook
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Blocks emails based on sender, attachments and URLs
  • Pulls known phishing emails
  • Converts phishing emails to training emails
  • Integrates with Outlook
  • Preview attachments when blocking them
  • Send emails externally when using actions
  • More powerful PhishRIP
Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Implementation of Phish Alert Button
  • Streamlines the "this email looks weird" process that bogged down our Helpdesk
  • Let's us quickly remove emails from everyone's inboxes
  • Make a direct link to login, right now I have to login the console and then click on the PhishER button
  • After you submit a PhishRip, there is no way to review the parameters of the PhishRip in my experience. I would like to go back and look at the results in relation to the parameters that I used to create the PhishRip
  • The PhishML is a little lacking, at least for us. In my experience, we were getting alot of false negatives for "Clean" that we had to turn that one off completely. It does good with "Spam" or "Threat" though, which is more important
Return to navigation