TrustRadius: an HG Insights company

KnowBe4 PhishER/PhishER Plus

Score9.2 out of 10

215 Reviews and Ratings

What is KnowBe4 PhishER/PhishER Plus?

PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Read more details.

Media

Screenshot of how PhishER Plus enables a critical workstream to help IR teams work together to mitigate the phishing threat and is suited for any organization that wants to automatically prioritize and manage potentially malicious messages.

Screenshot of how PhishER Plus enables a critical workstream to help IR teams work together to mitigate the phishing threat and is suited for any organization that wants to automatically prioritize and manage potentially malicious messages.

Top Performing Features

  • Company-wide Incident Reporting

    Built-in enterprise-level ticketing system to leverage the knowledge of the entire workforce, not just the security team

    Category average: 8.8

  • Centralized Dashboard

    A central dashboard provides analysts with a clear look at the most important data

    Category average: 8.5

  • Machine Learning to Prevent Incidents

    Incident prevention powered by machine learning with no human intervention

    Category average: 8.7

Areas for Improvement

  • Live Response for Rapid Remediation

    Live remediation response allows incident responders to initiate remediation from anywhere over secure connection

    Category average: 8.3

  • Integration with Other Security Systems

    Pre-built integration with other security systems like SIEM and threat intelligence

    Category average: 7.5

Who Buys & Uses KnowBe4 PhishER/PhishER Plus

Pros

  • Automated handling and remediation of suspicious emails
  • Instant threat response and removal from mailboxes
  • Comprehensive phishing training and security awareness resources

Cons

  • Complexity in user experience and administration
  • Difficulty modifying email templates
  • Limited customization flexibility for user groups

Spend your time fishing not falling for Phishing with KnowBe4 PhishER/PhishER Plus

Use Cases and Deployment Scope

We needed a way to pull all confirmed phishing emails out of our team's inboxes, sandbox the emails and prevent others from falling for the same email. KnowBe4 PhishER/PhishER Plus does all this and more. Protecting the weakest link in our security, us. We are notified of any suspicious emails and we are then able to take action. Sometime a user will report a legitimate email and we are able to confirm to the user that it's not a suspicious email or on the flip side, we can notify everyone if there is something going on in real time. Security is vital to us as an organisation.

Pros

  • Ripping out emails from users inbox if a suspicious email was sent to the entire organisation or multiple people.
  • Uses real emails to make templates to run phishing tests on users
  • Reporting on any vulnerabilities and simulated phishing tests

Cons

  • From a non-technical person viewpoint, easier to understand reports on the phishing attempts received by our team

Return on Investment

  • Freed up resources to focus on work and not on reports
  • Reduced our cybersecurity insurance cost
  • Kept us safe from major breaches and therefore increased our trustworthiness with our clients

Usability

Other Software Used

Xero, Stripe Payments, HubSpot CRM

KnowBe4 PhishER is well worth it

Use Cases and Deployment Scope

We are using KnowBe4 for educational purposes, as well as logging phishing attempts to the orgainzation. As a small IT department, it has been a fantastic tool to get a overall vision of stengths and areas that need to be enhanced. We can then take information and provide better feedback to KnowBe4 to allow better protection against future spam attacks.

Pros

  • Great overall vision on how to build training and resources for better secuirty
  • Allows for presonalized focus on individuals and how to give them better, more focused training.
  • Allows to show leadership trends and patterns in graphical form

Cons

  • The spam control is most reliant on human interaction to make it effective. It would be nice to see some more proactive controls
  • The intergration with 365 has been a little more complex than it should

Return on Investment

  • Every time a staff member doesn't click on a link or open a bad email, saves me hours. Every time!
  • As a single IT person in the company, having a single point of view on starting a new teaching campaign, look at stats finding out who is struggling the most is worth ever cent.
  • I love the fact that everything has little to no impact on the network. The integration with our email is fantastic.

Usability

Other Software Used

Microsoft 365 Business Premium, Pulseway, Cisco Duo

KnowBe4 PhishER/PhishER Plus saves our organization lots of time while increasing our security posture.

Use Cases and Deployment Scope

KnowBe4 PhishER/PhishER Plus is our chosen solution for automated phish submission review and remediation. It allows for an AI review of submissions and automated search and removal for similar emails in our organization. This helps to remove the manual review for identifying threats and manual remediation for removing them throughout our organization.

Pros

  • Identifying Real Phishing Emails
  • Creating block lists for emails
  • Removing real threats from our environment

Cons

  • Better PhishRIP capability - some emails are missed
  • Better identification - less false positives

Return on Investment

  • The automated review allows for a real-time response rather than awaiting a human's review

Usability

Alternatives Considered

Proofpoint Threat Response Auto-Pull

KnowBe4 - PhishER.

Use Cases and Deployment Scope

We use PhishER to consolidate all of our companies' reported phishing emails into one dashboard. We can then find similar messages throughout the tenant and rip them with a couple of clicks if needed. This allows us to act quickly when a malicious email hits. We also use it to notice trends and stay proactive on current malicious attacks with the Global list.

Pros

  • Quickly loads and catalogs reported emails.
  • Rip feature is fast and accurate.
  • Threat notifications.

Cons

  • It's ONLY applicable to emails reported by the end-user
  • The Rules and Notifications section is difficult to understand and navigate. Too complicated for what it is.
  • The Find Similar Messages could be more efficient in its findings based on the search criteria.

Return on Investment

  • I assume it has saved us a few possible clicks on malicious emails.
  • It's saved us substantial time in combing through mailboxes or shared mailboxes.
  • It has greatly improved our proactivity in terms of the Global list, enabling us to see and catch threats before they happen.

Usability

Other Software Used

Bitdefender GravityZone, ManageEngine Log360, Egnyte, Scale Computing Platform

PhishER - Best in industry for spam reporting capability.

Use Cases and Deployment Scope

KnowBe4's PhishER is a product used to manage spam emails that bypass the email security gateway and reach end-users' email systems. PhishER helps us to manage this issue in a structured way. PhishER does it by using some tools and technologies. First, it uses an email plug-in called Phish Alert Button that installs on end-users' email clients such as Outlook. Once installed, it simplifies the email reporting process by enabling end users to report spam emails directly via the Phish Alert button. So, it makes the email reporting process easy and handy for end users. Once the email is reported, it is automatically collected on the PhishER portal, and the security team can review it. So, by this process, it saves the time and effort of security team. So, PhishER solves two of our problems: email reporting and collecting reported emails in one place.

Pros

  • KnowBe4's Phish Alert Button effectively collects all reported emails from end-users in one place.
  • The PhishML feature of PhishER effectively auto-scan reported emails using machine learning technologies, providing a tag for each email based on its body content and other aspects.
  • The PhishRIP feature works well by allowing the security team to create a query and quarantine all relevant emails from the end user's email system.

Cons

  • The PhishRIP query can be improved to find other emails apart from the reported one only.
  • They should provide an option to delete the quarantined emails that are quarantined by the PhishRIP feature.
  • The PhishML can be improved to produce more accurate results.
  • More options to integrate PhishER with 3rd party tools.

Return on Investment

  • PhishER enables us to report phishing emails quickly and easily through the Phish Alert Button email plug-in.
  • PhishER helps us quarantine suspicious emails quickly by using PhishRIP.
  • PhishER helps us to investigate the phishing-reported incidents quickly by using PhishML.

Usability

Other Software Used

Adobe Acrobat, Mimecast Advanced Email Security, KnowBe4 Security Awareness Training, VirusTotal, Cybereason Managed Detection & Response (MDR)