KnowBe4 Phishing Solution
The KnowBe4 phishing solution is an enterprise-level security awareness and phishing simulation platform that helps organizations train their employees to recognize and report social engineering and phishing attacks.
KnowBe4 provides an extensive range of training materials to teach security best practices and improve understanding of a wide range of email and web-based threats. The training modules help organizations improve their security posture by raising employee awareness of security threats. Phishing, vishing and smishing simulations are used to reinforce training and reduce susceptibility to attacks.
The training modules and phishing exercises place an emphasis on combating social engineering threats rather than email attachment-based attacks, with computer-based training modules covering malware, ransomware and BEC scams.
The KnowBe4 phishing solution includes training modules developed by a renowned hacker with more than 30 years’ experience of social engineering, phishing and other techniques used by cybercriminals to gain access to well-protected IT systems.
KnowBe4 Phishing Solution: Key Features
The KnowBe4 phishing solution incorporates an extensive library of training programs, with more than 300 training tools such as videos, games, newsletters, posters and interactive training modules. The phishing solution is split into four subscription packages – Silver, Gold, Platinum and Diamond – with the subscription packages based on organization size and the level of risk faced by each organization. Training modules can be accessed via KnowBe4’s cloud-LMS. Alternatively, modules can be uploaded to SCORM compliant learning management systems.
Kevin Mitnick Security Awareness Training
Notorious hacker Kevin Mitnick has partnered with KnowBe4 to develop its Training Access Level 1 program – a series of three training videos that highlight the common social engineering tactics and traps used by cybercriminals to gain access to sensitive data. The training modules cover the mechanics of spam and phishing, spear phishing attacks, malware and ransomware.
The security awareness training includes baseline testing of susceptibility to phishing and other email and web-borne threats with a full reporting suite for communicating results to management. The training programs are available in multiple languages – English (U.S. and British), French (European and Canadian), German, Spanish and Polish.
The KnowBe4 phishing solution also includes fully automated phishing simulations using hundreds of company-developed templates, community phishing templates developed by customers and customizable templates for spear phishing simulations. Businesses have the option of customizing landing pages for point-of-failure education purposes.
KnowBe4 Enterprise Awareness Training
The KnowBe4 phishing solution includes training modules covering security basics to improve employees’ understanding of the most common threats, with training modules available on a wide range of security threats such as CEO fraud, ransomware, USB attacks, email and domain spoofing, social engineering and phishing/spear phishing. Enterprise customers can also access training modules covering credit card security, creating strong passwords, handling sensitive information, safe web browsing, physical security and social media best practices.
The enterprise training and phishing simulation platform combines all functions in one graphical user interface. Administrators can use the interface to push out training to employees and create and run phishing simulations.
The KnowBe4 phishing solution offers users ‘double-random’ message delivery to deliver different phishing simulations to each employee, with those messages spread throughout the working day. Once configured, all phishing simulations can be automated with reply tracking used to identify and report user failures.
Company research has demonstrated that the KnowBe4 phishing solution can reduce user susceptibility to phishing attacks by more than 90%, with the Phish-prone™ percentage falling from an average of 15.9% to 1.2% in 12 months.
Customer Awareness Program
In addition to offering training for businesses, the KnowBe4 phishing solution includes a Customer Awareness Program (CAP) to allow businesses to improve their customers’ cybersecurity awareness. The CAP offers advice about safe banking, password sharing and reuse, protecting identities and keeping children safe online. Improving customer awareness of phishing and social engineering techniques and teaching security best practices helps organizations prevent fraud and identity theft.
The KnowBe4 phishing solution includes a range of free security screening tools to help organizations assess their security posture and exposure to phishing and malware attacks. The toolset includes a free phishing security test for up to 100 users to gauge susceptibility to phishing attacks and an email exposure check – a one time report of email addresses exposed on the Internet which could be harvested and used in phishing and spear phishing attacks.
A ransomware simulator can be used to determine if a workstation is vulnerable to infection and a weak password tool checks the effectiveness of an organization’s password policies. KnowBe4 also offers a free Phish Alert tool – A one-click option for mail clients that allows employees to forward potential phishing and scam emails to security teams for further analysis.
KnowBe4 is the most popular security awareness training and simulated phishing platform with more than 10,000 worldwide users. The platform is popular with banks and credit unions, which make up 25% of its customer base.
The company was formed in 2010 by Stu Sjouwerman, co-founder of Sunbelt Software. After the company was acquired by GFI Software, Sjouwerman turned his attention to improving organizations’ last line of defense – employees – and formed KnowBe4, releasing the first computer-based training platform the same year.
KnowBe4 has now partnered with Kevin Mitnick, one of the world’s most notorious hackers with more than 30 years hacking experience. In 2012, Mitnick was the most wanted computer criminal in the United States. Mitnick swapped his black hat for a white hat and formed his own security company before partnering with Sjouwerman to further develop KnowBe4’s security-awareness training programs.
KnowBe4 has been ranked in Cybersecurity Ventures’ Cybersecurity 500 list of top companies to watch in 2017, secured #50 in the Deloitte Technology Fast 500 List for North America in 2016 and debuted at #139 overall in the Inc. 5000 list for 2016, also being ranked #2 in the list of top security companies in 2016.