Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
Microsoft Defender for Office 365
Score 8.7 out of 10
N/A
Microsoft Defender for Office 365 is a security solution used to protect Office 365 against advanced threats, such as phishing and business email compromise. It helps prevent volume-based and targeted attacks, including business email compromise, credential phishing, ransomware, and advanced malware with a robust filtering stack, as well as to detect malicious and suspicious content like links and files across Office 365.
N/A
Pricing
Cofense PhishMe
Microsoft Defender for Office 365
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cofense PhishMe
Microsoft Defender for Office 365
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
Cofense PhishMe
Microsoft Defender for Office 365
Features
Cofense PhishMe
Microsoft Defender for Office 365
Security
Comparison of Security features of Product A and Product B
Cofense PhishMe
7.8
Ratings
9% below category average
Microsoft Defender for Office 365
-
Ratings
Single sign-on capability
7.40 Ratings
00 Ratings
Role-based user permissions
8.20 Ratings
00 Ratings
Security Awareness Training
Comparison of Security Awareness Training features of Product A and Product B
It's a very apt tool for the scenario where there are multiple users and verticals in an organisation. Phishing Campaigns and recording their response actions is quite easier through this tool. Not suitable for a small organization (less than 500) that can maybe use some open tools or self-made emails for campaigns.
It's well suited for our physical deployment of remote people and sort of a SaaS company. It exists in cyberspace, so that's really very constructive. Where it's not, these sort of very specific data sets and sort of identity protection for customers, it's not as useful and it may not be one of its core purposes, but we're trying to use it for that as well.
Many of the URLs come in with an unknown reputation and although it may be challenging from threat intel feeds, somehow allowing a more in-depth analysis of the URL can provide better/quicker decision making or validation.
Adjustable widgets for reporting, although the provided are already built very well.
Provide in-house templates or summaries of actionable items, such as a single brief on a major phish.
I think it needs to be tuned correctly. For example, afterwards I tried to go in and print once after the implementation was done, I went in and tried to print a file or export a document. Just not possible, which just means it's great, works really well, but it also means that you have to tune your data categorization very carefully.
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
PhishMe is a market leader in terms of phishing simulation solutions. The customization appears unmatched when compared with competitors and the support we have experienced from Cofense has been excellent. Phish me offers lots of realistic templates which are updated regularly which is far ahead of other solutions. Phish me also provides lots of detailed statistics as well as high-level numbers which are really useful for some clients who want details, and others who only want high-level overviews.
They are not entirely in the same category, or have the same functionality, but before we had Microsoft Defender for Office 365, the only security we had was in the form of Zscaler products, and filtering and inspection, etc done by our service provider which was Orange Business Services at that point in time. However, I'm sure this stacks up very nicely amongst the others out there.
From a normal user's perspective, it's an easy and fast, very very user-friendly phishing email reporting structure. No need to remember any email address, no need for sophisticated handling of malicious emails while sending/ reporting. Just a click and it is done.
From the admin and analyst point of view: Easy and clutter-free triaging pane, IOC reputation check facility, Rules and Recipes section for automation and focused triaging, Notification to the reporter based on the triaging done is really a helpful feedback loop.
Overall: Simple to handle, less learning curve, well managed, less administration time, fewer issues, less maintenance time.
It has been a positive impact on the ROI. When we moved to being a remote-first company, it has give us all the positive return of investment of anything that we have put in the product for employees working across the world during Covid times. It has helped us achieve those results seamlessly.