Skip to main content
Sophos Phish Threat

Sophos Phish Threat


What is Sophos Phish Threat?

Sophos offers security awareness and phishing training and preparation testing via Sophos Phish Threat, the company's phishing attack simulator.

Read more
Recent Reviews
Read all reviews
Return to navigation


View all pricing

What is Sophos Phish Threat?

Sophos offers security awareness and phishing training and preparation testing via Sophos Phish Threat, the company's phishing attack simulator.

Entry-level set up fee?

  • No setup fee


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

17 people also want pricing

Alternatives Pricing

What is KnowBe4 Security Awareness Training?

KnowBe4 is a security awareness training and simulated phishing platform used by more than 60,000 organizations around the globe. Founded by IT and data security specialist, Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO…

What is CyberHoot?

CyberHoot is presented as a simple, fast and effective employee Security Training Platform from the company of the same name headquartered in Portsmouth. The platform includes 700+ Training Videos, 25+ Policy Templates, and Phish Testing.

Return to navigation

Product Demos

How-To Tuesday | Sophos Phish Threat - Episode 6 - Overall Reporting


Sophos Sophos Phish Threat Templates and Training Overview


Sophos Phish Threat | Templates and Training Overview

Return to navigation

Product Details

What is Sophos Phish Threat?

Sophos Phish Threat Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo
Return to navigation


View all alternatives
Return to navigation

Reviews and Ratings


Attribute Ratings


(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Sophos allows my colleagues and me to safely engage in all of our digital activities without fear of researching on the wrong website or getting hit with spam that might lead to vulnerabilities. It's quick & works silently in the background providing a seamless experience that doesn't interrupt my daily workflows.
  • Seamless.
  • Fast.
  • Over-protection.
  • Suggest times to run.
  • Run out of working hours for full checks.
  • Provide context around threats & how to avoid.
If you're looking for a tool to maximize digital productivity without hindering the effectiveness of your workforce, Sophos is a great tool. It quickly & safely manages the threat level across all of our digital channels to reduce the potential engagement with fishy characters or websites that might present vulnerabilities.
  • Scalable.
  • Remote start.
  • Runs in the background.
  • ROI seems to be there though I have no direct stats.
  • Positively impacts my web-browsing experience. As an Account Executive, it enables me to do my company research quickly without engaging with any bad actors.
  • It runs in the background so it never impedes my workflows.
Salesforce CPQ (formerly SteelBrick), Outreach, Bonusly
Ryhlen Schoeberl | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
We use Sophos Phish Threat to test all our users in the organization. We are able to customize phishing tests for the department or user in what they will see most often. This helps better prepare our users for possible phishing emails they could get to their work email or even their personal email.
  • Updated phishing scams and training
  • Ease of use interface
  • Reports on Passing and failing.
  • I wish I could mark manually that someone passed the training that way if a big group gets caught we can sit down and use our training class for the users.
It is great for our corporate environment so we can target departments or specific users for certain phishing scam testing. I like the reporting function to see who is avoiding taking the training as well as being able to tell who has a high number of failures in the company. I do not think that there is a reason you should not be phishing your employees.
  • Our employees have become more aware of different phishing tactics used since we have started using Sophos Phish Threat
  • We have had an increase in reporting of possible phishing emails since we started using Sophos Phish Threat
  • We have also been able to block certain IP addresses from sending us emails since all they do is send phishing emails to us
We selected Sophos as it integrates with our antivirus solution and we only have one dashboard for both. It just made sense to bundle the sophos phish threat with intercept X and antivirus solutions we have in place, and all of it is on a cloud based interface for easily managing and running reports from anywhere.
  • Price
  • Product Features
  • Product Usability
  • Product Reputation
  • Vendor Reputation
  • Existing Relationship with the Vendor
  • Positive Sales Experience with the Vendor
We were reevaluating our endpoint protection and were looking at Sophos. We were able to get a bundle of Sophos Endpoint Protection, Intercept X, and phish Threat for less than the renewal cost of our current endpoint protection that did not offer any additional features we were looking for and it is all on one interface.
I would say that the Demo that was provided by Sophos on their products was very in depth and allowed us to make the right decision on purchasing their products.
Had a Problem with some users not being able to see the training. These users were blocked from viewing streaming sites so we can keep bandwidth down. I submitted a ticket and the same day I got a call to troubleshoot the issue. They were able to walk me through where to find the site that was being tagged for blocking and re-tag it as a training page to allow through firewall.
Every time I have contacted Sophos with an issue i have gotten immediate help with a solution to fix my issue or told that was going to be an added feature down the road.
  • Reporting
  • Setting up tests
  • Sign up users for mandatory training
  • If you have firewall and blocked streaming sites you may have problems with training videos it does take some digging to allow right keywords through firewall
It is easy to use and setup. You can schedule the Phish email test to be sent out in the future or right away. You can also send to all users in your list as well as stagger so all users do not get the email at the same time and tell each other there is a test going on.
Beau Sorensen | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
We use Sophos Phish Threat across the organization to ensure that people are aware of and acting appropriately with generalized phishing and spearphishing attacks. We set up a schedule to periodically send out phishing emails. When employees respond to them or click links in them, it takes them to training modules so they can know how to better respond, especially as scammers are getting even more clever in the ways they try to get money or spread viruses in our business.
  • Set up an easy-to-use low overhead system of training and protection.
  • Works through a single pane of glass when using other Sophos products.
  • It could be more robust.
  • Better variety of phishing emails.
If you're already using Sophos products, Phish Threat is a great addition to what you're already using. Because it's available under the same single pane of glass as most other Sophos things and can be added for a nominal cost to existing Sophos services, it's a great add-on. There are better single solution products out there, but those can cost more and/or they have to be serviced under a different logon and website.
  • Users are more aware of and react better to phishing emails.
  • We know who is the most gullible or susceptible to phishing campaigns.
We selected Phish Threat because it was an easy to use add-on for our existing Sophos solution. By having it integrated into our existing antivirus, email, and encryption suite it allowed for a single pane of glass management in addition to robust total reporting of what users and computers we need to be most concerned about.
Support is solid but not spectacular. While I haven't used support for Phish Threat specifically, this is a general rating for Sophos' support across the board. It could be easier to find the FAQ or other information I need, but when I've needed to reach out to support they've been good to work with.
Sophos Intercept X, VMware ESXi, Citrix Virtual Apps (formerly XenApp)
Christopher Fritz | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
We have had some incidents where users would fall for phishing emails. Sophos Phish Threat has been purchased to train our users and give them a lot of awareness about phishing and how to spot a phishing mail. We use it in the whole organization, and send out a false phishing email every now and then. Users who click will be enrolled in training and have to finish the awareness training.
  • Great templates for the setup of phish threats.
  • The overview is simple.
  • Easy to set up and use with other Sophos products.
  • The training and awareness videos and tutorials are spot on.
  • It should be easier to follow up with a user when they haven't completed training.
  • More options for reporting would be nice.
  • Better choice of users as all emails have been imported (aliases, dist. list. etc) taking up licenses.
The application has created a lot of awareness of phishing and other email hacks. People have become more focused on spotting emails and letting the IT Department know. People also feel bad after clicking one of our false phishing emails and learn a lot from it. So Sophos Phish Threat is well suited for organizations who might have a lot of junior users or, in general, feel exposed to phishing emails. There's not a lot of scenarios where I would say it's not well suited, as people always can improve their ability to spot a phishing mail and know how to handle it.
  • A lot of awareness of phishing emails has resulted in fewer attacks.
  • Fewer phishing attacks = less money used on tracing the outcomes of an attack.
  • Happier clients who know we're very focused on our security and infrastructure.
We already use some of the other products in the Sophos Suite, so it was natural to test it and implement it directly in our Sophos Central admin center. So we never checked other products, as we, in general, are happy with Sophos.
Return to navigation