KnowBe4 PhishER/PhishER Plus Reviews and Ratings

Rating: 9.2 out of 10

Score

9.2 out of 10

Community insights

TrustRadius Insights for KnowBe4 PhishER/PhishER Plus are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Automation Efficiency: Users have expressed appreciation for the platform's automation, which saves time by responding to phishing reports automatically. This feature streamlines workflow processes and allows teams to focus on other critical tasks, ultimately increasing overall productivity.

Threat Handling: Reviewers highly value the feature that automatically evaluates and quarantines reported emails upon detecting a threat, enhancing efficiency in handling potential risks. By swiftly categorizing and isolating suspicious emails, this function prevents security breaches and minimizes the impact of malicious attacks on the organization.

Machine Learning Capabilities: The impressive machine learning capabilities of the platform are praised by users for accurately identifying safe and malicious emails in real-time, providing valuable insights into trends. This proactive approach aids in staying ahead of evolving threats and empowers users with actionable intelligence to strengthen their cybersecurity posture.

Reviews

119 Reviews

KnowBe4 PhishER/PhishER Plus - Saving Organizations Hundreds of Thousands 1 Click at a time

Rating: 10 out of 10

Incentivized

June 25, 2025

Use Cases and Deployment Scope

We’ve been Phishing our employees utilizing KnowBe4 over 6 years now and recently implemented KnowBe4 PhishER/PhishER Plus's AIDA AI Phishing Tool- All advanced Phishing Simulations! Absolutely fantastic results! I highly recommend organizations move to KnowBe4 PhishER/PhishER Plus's AI Phishing Tool. Over the years I’ve been given another title from employees - “The Phisherman” :) All employees use the Phish Alert Button to report suspicious emails and they actually appreciate being Phished regularly! KnowBe4 PhishER/PhishER Plus provides an excellent service! We have successfully removed threat emails from 50 mailboxes at once in a matter of seconds using PhishER - Threat is detected query automatically created threats found and we instantly remove all emails - We teach our employees if you see something say something!!!! The "Say Something" is clicking on the PAB - Phish Alert Button ""KnowBe4 PhishER/PhishER Plus's plug in- in Outlook - and then we are instantly alerted of the Phishing threat! We also utilize all of the incredible online trainings and employees love the courses! Even if they fail a Phishing Simulation from AIDA AI and have to retrain the love the makeup courses! Thank you KnowBe4 PhishER/PhishER Plus for an incredible service! I would highly recommend KnowBe4 PhishER/PhishER Plus to everyone!!!!!!!!!!!! Sincerely, Glenn Romano Director of IT Services Sutro Biopharma Inc

Pros

Report threats instantly
Query instantly
Remove emails from inboxes instantly

Likelihood to Recommend

Just the greatest service out there! Glenn

Glenn Romano

Director of IT Services in Information Technology at Sutro Biopharma (201-500 employees)

Vetted Review

6 years of experience

Verified on LinkedIn

KnowBe4 Review

Rating: 10 out of 10

Incentivized

June 24, 2025

Use Cases and Deployment Scope

We use KnowBe4 PhishER/PhishER Plus to educate users on the dangers of scams and phishing emails, as well as instruct and test them on how to handle fake emails as they come in. Along with PhishER, we are able to mitigate problems before they are able to being within the organization. We've had incidents in the past, and KnowBe4 provides the tools to prevent incidents in the future.

Pros

They have an excellent catalog of training and informational videos
KnowBe4 PhishER has multiple tools and integrations that help spot fake emails
KnowBe4 keeps track of users Phish-prone percentage through simulated phishing campaigns that give helpful insight into what users need re-educating

Cons

KnowBe4 could handle managing user groups a bit better. Smart groups are nice, but there should be more customizable "if-thens" for smart groups
More customization for simulated phishing email templates
Better machine learning

Likelihood to Recommend

KnowBe4 PhishER/PhishER Plus does well for larger organizations, without extreme customization. In smaller orgs and businesses, where users know each other, pre-existing templates don't do as well to test users and instead encourage an attitude of laziness when it comes to spotting fake emails.

Verified User

Technician in Information Technology (51-200 employees)

Vetted Review

4 years of experience

Time-Saving Tools That Boost Our Phishing Response

Rating: 10 out of 10

Incentivized

June 24, 2025

Use Cases and Deployment Scope

We use KnowBe4 PhishER/PhishER Plus to analyze and remediate suspicious emails reported by employees quickly. Once reported, these emails automatically feed into a central system for review and can be checked against Egress to sort and prioritize them. This tool has significantly reduced manual triage, improved incident response, and strengthened our cybersecurity posture.

Pros

automates the handling of suspicious emails reported by employees
KnowBe4 PhishER/PhishER Plus integrates well with existing email security systems, like Egress

Cons

tailored reports that show the specific trend, like type of phish
more open to directly feeding data into our SIEM Blumira

Likelihood to Recommend

When employees report phishing emails, KnowBe4 PhishER/PhishER Plus shines when end users report suspicious emails through the “Phish Alert Button.” It automatically captures these reports, analyzes them, and can even auto-assign severity levels. It’s great for taking the chaos out of phishing alert triage.

Ed Perez

IT Analyst at Inhance (201-500 employees)

Vetted Review

5 years of experience

View profile

Works as advertised great training material.

Rating: 9 out of 10

Incentivized

June 24, 2025

Use Cases and Deployment Scope

We use KnowBe4 PhishER/PhishER Plus as our security orchestration and incident response platform, focused on phishing threats reported by our users. With approximately 140 employees spread across design, project management, and field teams, KnowBe4 PhishER/PhishER Plus helps us streamline the process of managing potentially malicious emails reported through the KnowBe4 PhishER/PhishER Plus phishing alert button in Outlook.

Pros

Users seem to quickly grasp the PAB concept and use it
Wide variety of training videos to chose from
Automated tagging of messages based on threat indicators

Cons

Simplicity of campaign setup
Simplify overall admin experience
When reviewing a reported email, the preview pane is sometimes slow or difficult to use for inspecting headers

Likelihood to Recommend

In one case I was able to auto-quarantine emails across the organization using integrated actions, which saved me a lot of time. Support is great - I'm always short on time and often forget to set up training campaigns. My account rep hopped on a call and helped automate the process.

Verified User

Technician in Information Technology (51-200 employees)

Vetted Review

5 years of experience

Wouldn't it be nice to KNOW before.

Rating: 8 out of 10

Incentivized

June 23, 2025

Use Cases and Deployment Scope

We contracted with KnowBe4 for both Phishing services and security awareness training, following years of in-house content creation.

Pros

Awareness training that is both effective and engaging.
PhishRIP queries to proactively battle the phishermen.
Effective phishing campaigns for additional training and remediation.

Cons

Extremely customizable and it is easy to get lost in the documentation.

Likelihood to Recommend

A simple, basic setup gets better results than manual options.

Verified User

Director in Information Technology (51-200 employees)

Vetted Review

1 year of experience

KnowBe4 PhishER/PhishER Plus is Fabulous

Rating: 10 out of 10

Incentivized

June 23, 2025

Use Cases and Deployment Scope

KnowBe4 PhishER/PhishER Plus automatically successfully analyzes over 90% of our "questionable" emails coming into our organizations, deeming them Threats, SPAM or Clean. Combined with the ease of use that the Phish Alert Button (PAB) integrated into Outlook provides for reporting the emails by our end users, the time savings and threat reduction is massive.

Pros

Machine Learning
Threat Assessment
Automation
Communication

Likelihood to Recommend

Excellence all the way around.

Verified User

Director in Information Technology (51-200 employees)

Vetted Review

5 years of experience

Solid Product with Great Support

Rating: 10 out of 10

Incentivized

June 23, 2025

Use Cases and Deployment Scope

KnowBe4 PhishER/PhishER Plus has several components of use. 1) We use the Phish testing. We run regular tests against our users to find individuals that may need additional education or training. This allows us to close weak links. 2) Training: We are a small team and do not have the time to do one on one training with users. Because of this we can lean on KnowBe4 PhishER/PhishER Plus training programs to help us educate our users. 3) PhishER+PAB: This function has now proven to be one of the most useful tools. With the automation and PhishRIP(+) we are able to more quickly remove emails that would prove to be risky. We have mitigated several large Phishing attacks because a user reported an email that was ripped company wide.

Pros

Quick phishing mitigation
Insight and data tracking
Education
Testing customizability

Cons

Issues with Global Blocklist
Email Template Modification - Simplification
Target Specific Users vs. Groups
PhishRIP info tabs (i.e. if improperly check ripped emails are turned into tests. This has caused issues.) Info tabs or markers allow user to hover and get more information about what action a check box or slider provides.

Likelihood to Recommend

Best suited: Phish testing, assessment, and mitigation. We ran several overlapping tests and results are documented to the specific user so we are able to gain a better understanding of the strengths and weaknesses of each user. Additionally, phish attacks are reduced company wide because of the PAB+PhishRIP functionality. Less appropriate: Overall spam reduction. While PAB+PhishRIP remove received emails it does not block them from the user. Because of this our users are frequently confused which system they should use to report emails to. Our email filtering system or PAB.

Bronson Bontrager

IT Operations Specialist in Information Technology at Quality Dining, Inc. (51-200 employees)

Vetted Review

5 years of experience

Best tool in the industry

Rating: 10 out of 10

Incentivized

June 23, 2025

Use Cases and Deployment Scope

Use daily. The automated process is very helpful as well as when things look like a threat allows us to then dig deeper in to the sender across our domains. Analytics and history are also helpful in finding an email in or out of our domain that has become an issue.

Pros

Analysis
Threats over time
Ease of use for users
Queries
Integration

Cons

More automation for unknowns
Fix the hook button in main box
More tools

Likelihood to Recommend

Very useful for a Tema such as mine which consists of only 2 techs spread over 15 buildings and 500+ users.

Verified User

Administrator in Information Technology (501-1000 employees)

Vetted Review

23 years of experience

PhishER Adds great value and protection to your companys security stack

Rating: 8 out of 10

Incentivized

March 21, 2025

Use Cases and Deployment Scope

Phisher Plus allows us to effectively and easily receive phishing and spam reports from our users. Further it allows us to action the alerts with a few clicks, even allowing removal of malicious emails from all of our users inboxes. The system saves us time and headache in blocking phishing related emails sent to our users.

Pros

Phish reporting button is easy for end users
Very easy to configure and setup
Easily block email addresses, domains, URLs, and attachment hashes
Integrates easily with Virus total to scan attachments
Automation rules allow you to remediate or ignore automatically

Cons

I wish that we could permanently block things, the max allowed time is 60 days
The login flow is a bit clunky in that you have to log into the KB4 portal and then open Phisher Plus
The system could be a bit more proactive in looking for malicious emails

Likelihood to Recommend

The system just works great for what it is meant to do. Being able to see all of my users reported emails in a single pane and being able to action them if needed is a great value add for our IT team. All of my complaints are all minor.

Verified User

Director in Information Technology (51-200 employees)

Vetted Review

2 years of experience

We use KnowBe4 PhishER to assess and train employees. The largest entry point for ransomware and malware is employees and their email. KnowBe4 PhishER provides great training and simulation to help our employees become and remain vigilant. The ease of use is awesome, being able to easily deploy a simulation on regular intervals allows us to constantly train and get more of our time back.

Pros

Minimal configuration to get started.
Configuration options to keep things evolving.
Detailed reporting demonstrating effectiveness.

Cons

When resolving emails, and going back to the inbox, it should reload so the resolved emails are no longer there.

Likelihood to Recommend

KnowBe4 PhishER is great for regularly testing our workforce and assigning targeted training. With minimal configuration getting started was a breeze. Being able to build a baseline and increase the complexity is a huge bonus. The detailed reports make it very easy to demonstrate the ROI and allows our SOC to sleep better at night knowing that are employees are staying vigilant.

Verified User

Analyst in Information Technology (11-50 employees)

Vetted Review

2 years of experience

Loading Reviews List....

Solid Product with Great Support

Rating: 10 out of 10

Incentivized

June 23, 2025

Use Cases and Deployment Scope

Pros

Quick phishing mitigation
Insight and data tracking
Education
Testing customizability

Cons

Issues with Global Blocklist
Email Template Modification - Simplification
Target Specific Users vs. Groups
PhishRIP info tabs (i.e. if improperly check ripped emails are turned into tests. This has caused issues.) Info tabs or markers allow user to hover and get more information about what action a check box or slider provides.

Likelihood to Recommend

Bronson Bontrager

IT Operations Specialist in Information Technology at Quality Dining, Inc. (51-200 employees)

Vetted Review

5 years of experience