Skip to main content
TrustRadius
KnowBe4 PhishER

KnowBe4 PhishER

Overview

What is KnowBe4 PhishER?

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…

Read more
Recent Reviews

Phishing Hero!

10 out of 10
March 13, 2024
Incentivized
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 5 features
  • Live Response for Rapid Remediation (55)
    7.8
    78%
  • Company-wide Incident Reporting (52)
    7.8
    78%
  • Centralized Dashboard (62)
    7.8
    78%
  • Machine Learning to Prevent Incidents (54)
    7.7
    77%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing

3001-5000 Monthly Pricing Per Seat

$0.50

Cloud
per month per seat

2001-3000 Monthly Pricing Per Seat

$0.55

Cloud
per month per seat

1001-2000 Monthly Pricing Per Seat

$0.65

Cloud
per month per seat

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.knowbe4.com/pricing-phisher

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Incident Response Platforms

Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses

7.6
Avg 8.5
Return to navigation

Product Details

What is KnowBe4 PhishER?

PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.

PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.

KnowBe4 PhishER Features

Incident Response Platforms Features

  • Supported: Company-wide Incident Reporting
  • Supported: Integration with Other Security Systems
  • Supported: Centralized Dashboard
  • Supported: Machine Learning to Prevent Incidents
  • Supported: Live Response for Rapid Remediation

Additional Features

  • Supported: Automatic Message Prioritization

KnowBe4 PhishER Screenshots

Screenshot of This is a diagram of the PhishER workflow. Reviewing the PhishER workflow before getting started will provide an understanding of how PhishER, PhishRIP and PhishFlip work.Screenshot of The Reports screen will display five different dashboards of information.Screenshot of When entering the PhishER platform, the first screen that appears is the Dashboard. Here, a quick overview of the PhishER platform will appear.

KnowBe4 PhishER Video

Introduction to PhishER

KnowBe4 PhishER Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Supported CountriesGlobal

KnowBe4 PhishER Downloadables

Frequently Asked Questions

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Cofense Triage, Infosec IQ, and Proofpoint Threat Response Auto-Pull are common alternatives for KnowBe4 PhishER.

Reviewers rate Company-wide Incident Reporting and Centralized Dashboard and Live Response for Rapid Remediation highest, with a score of 7.8.

The most common users of KnowBe4 PhishER are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(160)

Attribute Ratings

Reviews

(1-25 of 69)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Before KnowBe4 PhishER, our SOC analysts would manually investigate hundreds of suspect/phishing emails reported by end-users that would slip our perimeter defense. After implementing the PhishER SOAR platform, we could automate the process end-to-end by categorizing the reported emails as benign, spam, and threat emails, including integration with our ticketing platform. This has saved hundreds of our security analysts' hours and enabled them to act immediately on critical threat phishing emails.
  • Categorization of suspect emails to Benign, SPAM and Threat.
  • Integration to VirusTotal, Ticketing platform.
  • Smart Dashboards.
  • Canned auto - response email to end-users.
  • AI/ML algorithm could be improved to reduce false positives and increase auto-resolved suspect emails.
PhishER plugs a "Report to Cybersecurity" button in your organization's user Outlook client. This enables users to report any suspect email to your security operations center. The SOAR capability in the platform makes it quick to decipher suspect emails as benign, spam, or threat, and it automatically responds to users with immediate details. This saves hundreds of security analysts hours that would otherwise have been spent focusing on critical threat email actions. Malicious attackers have become intelligent and sophisticated; hundreds and thousands of emails slip through the mail perimeter defense and directly land on user mailboxes. With PhishER, security analysts can quickly respond to the threat emails, including deleting the emails from user inboxes.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use it as a filtering tool that our end users can employ. Instructed to use the Phish Alert Button on ANY questionable emails allows us to get them into a habit of doubt if not an expected email. KnowBe4 PhishER analyzes and makes a determination on about 70% but holds for IT to review manually the rest. This can be adjusted but we have thresholds high to reduce risk of something slipping through. What this has accomplished for us two fold. 1. it makes it less time consuming to report a questionable email to IT and 2. allows the users to put into practice with a simple click all the "think before you click" training we use.
  • Automatically evaluates reported emails
  • Once it determines a threat, it pulls the email from all other mailboxes and quarantines them
  • One button block list can be set up for repeat senders
  • If an email is determined to be clean, a button to notify the reporter that it was clean and that they could find it in the deleted folder, with reference to the email would be nice.
It is wonderful at screening emails reported with the PAB and promptly responding with the results.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use KnowBe4's PhishAlert button to encourage our associates to report potential phishing emails. Once the emails were reported, managing them through Microsoft's Spam filter was proving very time-consuming and cumbersome for the small IT team at our organization (review email, create block of domain and sender, etc.). Once we adopted KnowBe4 PhishER, it lessened the burden for our team. Additionally, the global blocklist feature provides an additional layer of protection for our organization.
  • Learns which emails are phishing and which are legitimate
  • Customizable emails back to associates who report spam or clean emails as phishing
  • Clear view into what has been reported
  • I haven't found a good use case for Rooms feature yet
  • I haven't had to build any custom rules yet, either
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use KnowBe4 PhishER to help streamline the process of going through suspicious emails. The main problem being the time required to analyize and classify emails that come into the helpdesk as questionable. PhishER takes a good portion of that workload off of our staff and quickly classifies the known threats and spam emails so that we're only left with a handful of emails to manually go through. In addition the PhishER platform provides a ripping procedure to go out and remove those malicious emails from any other mailbox with those bad emails.
  • User Interface is easy to use.
  • Saves time by classifying emails as malicious or not.
  • In PhishRip portion would like to see more details regarding the message that is being ripped.
It works great for teams that have limited time to manually review suspicious emails. Depending on your user count, it will free up a couple of minutes a day or more.
March 15, 2024

Happy with PhishER

Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use KnowBe4 PhishER to prioritize and streamline our response to reported phish alerts by our users. Once the user spots a phish and uses the phish alert icon, the email is sent to our PhishER platform. We have rules set up to spot and respond to certain reported emails such as SPAM and Clean emails. This takes a lot of burden off of our team and can really concentrate on real phishing emails. PhishER also highlights header information so we can look right where we need to look.
  • Automates phish report response
  • Highlights email header information
  • Saves time for our team.
  • The rule setup could be easier to follow
  • Make it so you don't have to click back and forth with manually looking at emails
  • Make the email quarantine longer than 30 days.
We have many emails reported to our team every day. Most emails reported are not true phishing emails and are mostly Spam or Clean. KnowBe4 PhishER saves my team time buy auto labeling the email as Spam or return a canned response from my team if the email is clean. This saves me time and gets important legitimate emails responded to quicker.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
KnowBe4 PhishER has taken the place of our IT security and best practices training, as well as our phishing testing. The huge library of training material gives us a lot of flexibility with what we are training on and allows more focused targeted training efforts. There is also a huge library of phishing simulation templates ranging from all types of difficulties. This customization gives me the ability to hone in on things my team might actually see in the real world, and I can create or customize my own templates to be even more targeted.
  • Huge library of media
  • Real world examples and frequent updates
  • Communicative account managers
  • It can be a bit tedious to see specific results of phishing test (per user results)
KnowBe4 PhishER is best used by companies who aren't able or do not have the resources to create or customize their own internal training and learning material. KnowBe4 PhishER offers a lot of flexibility within their own system, and allows for admins to narrow the training and testing focus to very specific industries, tools, and needs. If you are able to create hyper customized material or just need extremely basic training, it may not be the best option, but should definitely be considered.
Henry W. Piel | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
KnowBe4 PhishER offers an "all in one" nice application for training, security, and testing exercises (e.g., "phishing"). My company has been using KnowBe4 PhishER for a year and half, and the internal feedback on this product is quite positive. The training sessions are interesting and keep the team's attention.
  • Customer Support; especially when we brough the application on board. The attention to detail, instruction, and help KnowBe4 team gave us is quite good!
  • A wide variety of trainings, over a multitude of topics.
  • Phishing Tests; "set it and forget" with metrics!
  • For start-up biotech/pharmaceuticals, I think KnowBe4 PhishER is the perfect addition!
The application is very easy to set up, maintain, and extrapolate metrics for the Senior Management Team.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We began using KnowBe4 PhishER after we were the victim of a socially engineered phishing scam. We realized quickly that we need to strengthen the human firewall component of our organization. KnowBe4 PhishER offers a comprehensive application that would allow us to train our users to better protect our organization, and allow us to be proactive in our protection against potential threats.
  • Simulated Phishing Campaigns
  • End-User Training
  • Security Analysis
  • Ability to call back threat emails
  • When customizing simulated phishing campaign emails the ability to add a upload a custom image would be helpful.
  • Some of the menu options take a bit to get used to - not as intuitive as I'd like. You select a user, then you can choose from a different menu to add them to a group. Once you know, it is not difficult - but not as easy as it should be.
I have been able to create customized simulated phishing campaigns that are really testing our users ability to "spot the fake." That coupled with the training campaigns that are included make it much more likely that our users will be better prepared to protect our organization by being able to recognize common industry threats, and brings awareness to less common threats that are out there. I love that they have a shared folder full of relevant, recent real-world scams that we can choose from to train our user base.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use it to help with phishing emails and to help educate our end users.
  • KnowBe4 PhishER helps end users to easily report possible spam or phishing emails with PAB
  • KnowBe4 PhishER helps cut down on review time phish emails
  • KnowBe4 PhishER phish RIP allows us to quickly remove dangerous email from other users in our environment
  • To be able to search in the block list page instead of having to manually scroll to find something
KnowBe4 PhishER, phish rip and the PAB button combination are great at letting the end user report emails and quickly being able to remove emails from other user email inboxes.
Bill DeLong | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Being in the financial services industry, our employees have to always be on alert for phishing and social engineering scams. KnowBe4 PhishER gives our security team the visibility it needs to quickly identify and remove potential email-based threats. It protects our organization and saves us a lot of time, money, and headaches.
  • Simple, easy to use. Minimal training required.
  • Helps you focus on the most important vs. reviewing thousands of emails.
  • Doesn't require a full-time resource.
  • Ability to integrate/share data with other SIEM solutions.
It is a fantastic solution for small-to-medium sized companies that have a small security staff and need a simple solution that provides the needed monitoring & alerting but doesn't require a large team or a lot of time to implement. KnowBe4 PhishER can be up and running in minutes, providing valuable insight & protection and training opportunities.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Having been the victim of ransomware attacks at my previous organization, I knew the importance of having my users trained to know the threats they would be facing in the digital world. That's why I chose KnowBe4 PhishER. We use KnowBe4 PhishER to train users on what a phishing attempt looks like, what to do if they see something that doesn't look right, and how to stay safe in a digital world. This keeps our network safer from outside threats.
  • Allows users to notify admins of a phishing email
  • Helps us train our users on proper email usage
  • Gives us information on what kind of emails are being reported
  • KnowBe4 PhishER could have a simpler login process
  • Email notifications would be nice
  • A phish confidence level on the emails reported could be useful
I feel KnowBe4 PhishER is useful for any organization that has users connecting to the internet and receiving emails. The ability to report phishing attempts before they become an issue is a huge help to any systems admin, especially when you don't have a large team. It's a really helpful tool.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
I use KnowBe4 PhishER as a Security Orchestration, Automation and Response (SOAR) to manage, analyse, respond to the very high volume of emails potentially dangerous reported by my company users with the "Phish alert button." Thanks to this platform I was able to automate 90% of the workstream linked to the reported emails by end users, as the platform automatically analyse the message and classify it as a threats, spam or clean. Based on this classification and based also on tags assigned I'm able to identify the dangerous emails and react to prevent threats. Very useful is the ability to create rules and actions, so I can give an immediate response to the user that report the email as suspicious and confirm if is a threats, spam or not dangerous, in this way I improve also the ability of the users to recognise a phishing and spot it. I use this platform every day and few times a day to monitoring email reported to identify spear phishing, massive spam or massive phishing email, this allow me to take action to prevent threats and avoid that others users that receive similar r email click on dangerous link or enter credential. The platform is easy to implement and can be integrated with other service providers like Microsoft for example the possibility to activate the PhishRIP allow the deletion of dangerous email in the user recipient for example before they read it and take an action that can be dangerous if is not able to spot that is a threat.
  • Analysis and classification of phishing emails using machine learning
  • Response to reporting users with personalised emails template
  • Automatic response and actions using integration with Microsoft
  • Good dashboard with reporting and KPI
  • Integration with others product to improve scan and analysis
  • It improves users' security awareness and behavior as receiving an immediate response with the analysis result improves the ability to recognize a phishing email
  • The lack of recognising email dangerous with QR code
  • Improve the alert/notification system to automatically advise the platform administrator in case of massive threats.
  • Decrease in uncategorized emails
KnowBe4 PhishER is very efficient and fast in detecting malicious emails, machine learning allows you to constantly improve the analysis of messages so in the event of receiving numerous malicious emails you can easily manage the incident response automatically, reducing the risk of expansion of the threat, blocking senders and deleting messages before they are read by other users.
March 13, 2024

Phishing Hero!

Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use KnowBe4 PhishER with our KMSAT. KnowBe4 PhishER is basically helping us to resolve our biggest security problem and that is Phishing attacks through email on our internal users. We have got a Phish Alert Button (PAB) that is installed on every user's outlook. When our users detect any email suspicious, they just click on that Phish Alert Button to report that email. After the report, the security team gets notified by email and that reported email stores in the KnowBe4 PhishER Dashboard. Then our security team analyze that email and verify if it's a Phishing email or a SPAM or Threat etc., and based on that we take action. So in this way, we are protecting our company from Phishing attacks. It has inbuilt AI feature (PhishML) that automatically categories the email as Spam/Threat/Clear. It has others feature like PhishRIP that is helping us after we detect an email as phishing and then we have a option to remove that email from all users account in just 2-3 simple steps. Then we have PhishFlip feature that has the capacity to convert any real phishing attack to a Phishing Campaign to test in your environment.
  • Phish Alert Button works well on suspicious email reporting. So in case of any phishing attack, our users can report the email directly to KnowBe4 PhishER dashboard and our team can take care of it then.
  • The PhishML feature automatically categories the reported emails based on email characteristics like Clean/Spam/Threat, so it makes our security job easy.
  • The PhishRIP feature is helping us to remove a suspicious email from all user's outlooks in just a few clicks and with this feature, we are building a strong security posture.
  • KnowBe4 PhishER integration with VirusTotal is helping us to scan any URL and documents that seems suspicious to us.
  • A detailed analysis of reported emails by using AI techniques.
  • Automatic quarantine of 100% sure phishing emails without any human interaction.
We were facing a lot of Phishing emails to our user inbox and users were getting it difficult to report the email to security team because they had to forward the email. But with the KnowBe4 PhishER, they are reporting a lot using Phish Alert Button in just a single click because it is installed on their Outlook.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use KnowBe4 PhishER to allow staff to report emails they find suspicious to us for review. This works very well and helps to train people in scam and phishing emails. We also use it as a secondary defense system, we have a security system to block emails that are malicious or include profanity, etc. but when that email system doesn't block a certain email, KnowBe4 PhishER can be used by the staff member to report and quarantine the email. We can then use it to block any further emails from coming through.
  • Reporting Emails
  • Blocking Domains and Senders
  • Virus Total Built In
  • Discussion with other Admins
  • Ability to discuss with User (Not Just Admins)
  • Ability to Block Senders and Domains for Longer than 60 days
  • Ability to view information such as IP Address, Estimated Location at a glance
KnowBe4 PhishER is well suited for environments that are very vulnerable to attacks such as Schools and Governments Authorities. This is because not every email that is phishing or malicious gets blocked by an Email Security System, so having KnowBe4 PhishER as a secondary line of defense would help to keep your systems more secure while also helping to train users in what kinds of emails are Phishing and what to look out for.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
The PhishER platform is an invaluable tool for our organization as it gives us real time insight when we are 'under attack' by a bad actor (or actors). We are able to identify trends, targeted users and methods used by the bad actors in trying to gain access or steal information. On top of this, the PhishRIP feature integrates with our GSuite and scans/quarantines other instances of reported emails that are deemed malicious.
  • The machine based learning does a great job of correctly identifying safe vs. malicious emails.
  • PhishRIP does an excellent job of finding and quarantining similar emails from other users accounts.
  • The reports give us a real time insight into trends and campaigns launched by bad actors.
  • Somtimes the PAB (or Phish Hook) has to have its permissions revalidated. This is a quick fix, but takes some knowledge.
  • I honestly can't think of any other shortcomings at this time.
  • See #1
I can't say enough good things about PhishER. While Google Mail does have the ability to report spam and malicious content, the reporting isn't as user friendly. Having PhishER gives us insight into the email landscape of our end users, and even affords us the ability to retroactively learn some of the techniques used by bad actors so that we can further educate our end users.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
The school has implemented the PhishER add-on for easily reporting suspicious emails. PhishER’s tools analyze these reports, reducing the workload on IT staff. PhishER streamlines the process of identifying, reporting, and responding to phishing attempts, thus saving valuable IT resources. PhishER is integrated into the school’s Gmail and IT security systems to prevent attacks through end user awareness and reporting.
  • The platform offers a simple, one-click reporting button for end-users.
  • Allows teachers to report suspicious emails without needing technical expertise.
  • The IT department is able to review all suspicious email in one dashboard.
  • Enhancing the automated response capabilities, such as directly initiating remediation processes or integrating with other cybersecurity tools, could further streamline the threat management process.
  • Implementing a feedback system where users can be informed about the outcome of their reported emails might encourage more proactive engagement.
  • the reporting tool is not as streamlined on mobile devices as it is on desktops. Enhancing mobile functionality would be beneficial
With a mix of staff, teachers, and potentially older students handling sensitive information, PhishER’s reporting tools are ideal for creating a safer email environment. The platform’s ease of access and user-friendly reporting mechanism is particularly beneficial for dispersed workforces.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use it to enhance our email security with EAA. It helps to block unwanted emails that may be malicious to our organization.
  • Blocks potential malicious emails
  • Easy to use and setup
  • Improves efficiency for my staff
  • Improved metrics
  • Improved dashboard
  • Better reporting
Very well suited to help weed out potential bad actor emails. It also improves the efficiency of the team.

Getting metrics/reports/dashboarding for executives could be improved.
December 27, 2023

KnowBe4 PhishER Review

Score 10 out of 10
Vetted Review
Verified User
We utilize it to combat phish email threats. We currently receive daily phishing attempts via email all throughout the firm, from executive levels all the way down to our basic users. All of our mailboxes are currently monitored by KnowBe4 PhishER, and users also have the ability to report phish emails using the Phish Alert Button.
  • Flag Phish Emails
  • Allow administrative action on flag
  • Automated action on flagged items classified as phishing
For any cloud based email environment, Microsoft 365 in our case, KnowBe4 PhishER is easy to setup for monitoring of incoming emails to the organization and help determine if the email is suspicious.
Jeff Boivin | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Our primary use of KnowB4 PhishER is as a reception center for potential phishing emails received by our staff. It helps us analyze information about the email to determine whether it is is a threat or not, if so then pull the emails out of everyone's inbox, & block the senders. We also have the PhishER+ add-on which proactively blocks known malicious sender, links, & files.

The problems we are solving with PhishER are having a better system for staff to report potential phishing emails than writing emails to me & it also gives me better tools to evaluate the threat of reported emails.
  • Phish Alert Button is easy for our staff to use & it is being used frequently
  • The ML, AI, & VirusTotal analytics on reported emails are very helpful in evaluating whether an email is truly a threat or not
  • The Phish RIP feature is useful for pulling phishing emails out of other staff members inboxes when a phishing email went to multiple people but not everyone reported it
  • PhishER+ is a great proactive tool for keeping out known threats
  • PhishRIP is successful at pulling most emails out of inboxes but sometimes it is not despite running the query in multiple ways. I will run a message trace in Microsoft Exchange & find 10 emails but then sometimes I am only able to find 8 to delete w/ PhishRIP. If it could somehow integrate with Microsoft Exchange Message Trace to make it easier to pull them all that would be helpful
  • I would like to see a way for staff to report Smishing messages from their phone
  • For PhishER+ I would like to the option for entries onto the BlockList to remain permanently. I know there is a limit to how many can be added but that limit is being increased. In Microsoft Blocklist if you manually add one you have the option to have it never be removed.
PhishER is an extremely helpful tool for anyone looking to have a well defined process for staff to report suspected phishing emails & have a designated employee review those reports, evaluate if they are threats, & then take next steps.

I can't really think when it would be less appropriate unless the company didn't want to have a phish reporting process.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
When users use the PAB I can examine the potential phishing attempts and teach the AI system what is and is not legitimate email. I also use the PhishRip to strip phishing emails from the user's email box.
  • Identifies potential phishing attempts using the different filters and Virus total.
  • Ripping phishing email from users email box.
  • There are many times phishing emails come in that I want to rip but cannot do to how the emails come in. The headers, subject line, receiver or sender vary slightly where the system cannot distinguish between the differences.
It greatly assists me in managing phishing emails from users. Without it, we would be limited in preventing users from accidentally clicking on one.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We use it to facilitate in the review of reported suspected phishing emails. It provides ease of review as all necessary information needed to determine a suspected email as phishing is readily available. It also provides automation for known false positives.
  • automation tasks for known false positives
  • providing information for phishing email determination
  • informative dashboard
  • setting up automated tasks
  • rooms is not really understood
  • customizable reports
best for managing phishing email reporting
Score 9 out of 10
Vetted Review
Verified User
Incentivized
KnowBe4 PhishER perfectly solved our issues with responding to phishing emails. Previously, responding to malicious emails was a completely manual process, and we could not respond nearly as quickly or efficiently as we wanted to.
With KnowBe4 PhishER, the process is now highly automated, and we can remove phishing emails from dozens of inboxes in just a few clicks.
Our users appreciate it because they receive much quicker feedback on clean emails.
IT appreciates it because it makes our job a breeze and lets us focus on the important elements of incident response.
Management appreciates it because it helps keep our institution safer and gives them excellent reporting metrics.
  • Quick phishing email review
  • Automated analysis and tagging
  • Immediate quarantine and removal
  • Quicker / more efficient PhishRIP
  • Improved "Find Similar Messages" filtering options
  • Improved notification options
KnowBe4 PhishER is highly efficient and cost effective, making it a great fit for small to medium businesses that are considered about phishing attacks. KnowBe4 PhishER helps small teams respond to phishing emails with the resources and efficiency of larger teams. It fits well with existing KnowBe4 clients, as the Phish Alert button is already in use and training modules for coworkers are available to instruct how to use the button.
Richard Fantozzi, Jr | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use it to automate the response and quarantine of phishing emails in conjunction with Office 365. This has greatly reduced the workload and response time of our security team. This has also helped improve the response to phishing emails to users to improve their awareness of what is and what is not a phishing email. One other use is the integration of webhooks to Microsoft Sentinel allow us to investigate incidents from Email
  • Identify clean, spam or bad emails
  • Speed of identification and response
  • Automation of reporting to integrated systems
  • Provdining supporting evidence for bad emails
  • Initial setup possible with a default setup that utilizes all functionality that could be turned off/on and modified per customers needs
  • Supporting multiple actions per foiund email instead of multiple rules needed to fire an email and a webhook
Less than a half hour of setup and we where ready to go with way more automatation that we had before which has proven to be highly effective especially when there are emails that make it through like in BEC scenerios with trusted 3rd parties.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
I love the AI behind this tool. It monitors and detects my phishing emails. It's an awesome tool that compliments our other endpoint solutions.
  • Blocks emails based on sender, attachments and URLs
  • Pulls known phishing emails
  • Converts phishing emails to training emails
  • Integrates with Outlook
  • Preview attachments when blocking them
  • Send emails externally when using actions
  • More powerful PhishRIP
Anyone can benefit from KnowBe4 PhishER. It's easy to setup and integrate with Outlook. Viewing emails is a breeze.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
KnowBe4 PhishER provides us with 2 major tools. It firstly allows our users to quickly and easily submit suspicious emails for review. Saving both our end users and our Helpdesk time with discussing these emails directly. Secondly, it gives us the Phish RIP technology which allows us as IT to quickly remove email threats from all of our users inboxes at once. Much quicker than the built in tools that Microsoft provides with M365
  • Implementation of Phish Alert Button
  • Streamlines the "this email looks weird" process that bogged down our Helpdesk
  • Let's us quickly remove emails from everyone's inboxes
  • Make a direct link to login, right now I have to login the console and then click on the PhishER button
  • After you submit a PhishRip, there is no way to review the parameters of the PhishRip in my experience. I would like to go back and look at the results in relation to the parameters that I used to create the PhishRip
  • The PhishML is a little lacking, at least for us. In my experience, we were getting alot of false negatives for "Clean" that we had to turn that one off completely. It does good with "Spam" or "Threat" though, which is more important
The best example I can give is that it completely streamlines and automates a very common call to the Helpdesk. The one where the end user calls and says "Is this email legitimate? Should I respond?" etc. Instead of having to take 10-15 minutes on the phone back and forth with an end-user, they can simply report the email using the Phish Alert Button and move on about their day.
Return to navigation