Employee conditioning for resiliency against phisinig
Change User Behavior
Cofense PhishMe was designed to change risky behavior and enable employees to recognize and report phishing emails. The Cofense methodology entails periodically immersing employees in simulated real-life phishing scenarios that deliver hands-on experience with safe examples and on-the-spot education opportunities. The Cofense research teams use real phishing emails to create timely examples and content focused on today’s greatest threats such as Business Email Compromise (BEC), HTTPS Spoofing, ransomware, and attachment based attacks.
Automate to Maximize Effectiveness
Save time while aligning your phishing program to the evolving threat landscape. Cofense PhishMe offers intelligent scenario selection and delivery automation. Moreover, it provides a series of prepared scenarios, landing pages, attachments, and educational pages scheduled to run over the course of a year. The Smart Suggest capability uses machine learning to recommend scenarios based on program history and industry relevance. With Responsive Delivery, ensure that phishing scenarios are delivered only when users are active in their email client, improving engagement and overall program effectiveness.
Build Resilience to Active Phishing Threats
The Cofense Phishing Defense CenterTM, Cofense IntelligenceTM, and Cofense Labs analyze millions of emails and malware samples. Their findings feed the scenarios available in our Active Threat templates, helping users prepare for the latest real-world attacks. You can also pull templates based on attacks that evaded your secure email gateway (SEG)—our new SEG Misses filter makes it easy. Most of the phishing emails Cofense verifies for customers are found in environments where SEGs are present.
Advanced, Next-Level Reporting
Cofense PhishMe provides deep metrics, benchmarking, and enhanced analytics and reporting that goes beyond simple click-rates. Board Reporting, an enhanced analytics feature that only Cofense PhishMe provides, delivers boardroom-level reporting to share with executive teams to showcase the results of your phishing defense program
Simple List Management
No more spending hours manually manipulating employee lists. Save time and resources. Just upload your user list and Cofense PhishMe will do the rest – and without needing to coordinate with email teams for access to active directories. Dynamic Groups simply define a set of criteria and the system will automatically pull the recipients into that defined group. Easy and effective!
Security Awareness – Covered
Cofense PhishMe integrates with Cofense LMS to automatically enroll users needing more education. With Cofense LMS, companies can leverage Cofense CBFreeTM modules and easily upload additional content for a fully-personalized catalog and experience. Cofense CBFree is available in multiple languages on over 25 topics with videos and gaming modules.
Educating your employees to understand phishing is a great first step. Now, empower them to help fight phishing with Cofense Reporter and Cofense Reporter for Mobile! With a record number of employees accessing work email from mobile devices, it’s more critical than ever and only Cofense delivers this capability – for free.
Find Relevant Content in Our Extensive Library
In security awareness, content is still king. The dedicated team behind Cofense PhishMe constantly updates our phishing, compliance, and cybersecurity content. From videos to infographics to CBTs, the Cofense PhishMe catalog has thousands of educational assets. Additionally, customers can access new premium content from our partners.
Why Cofense PhishMe?
With over 29 million employees trained in 160 countries, Cofense PhishMe has been proven to reduce the threat of employees falling victim to advanced cyber attacks by up to 95% – preparing your last line of defense to recognize and resist tricky phishing attempts.
- Click Only: A phishing email that urges the recipient to click on an embedded link.
- Data Entry: A phishing email with a link to a customized landing page that entices users to enter sensitive information.
- Attachment-based: A phishing email with seemingly legitimate attachments in a variety of file formats.
- Double Barrel: Patented technology that simulates conversational phishing techniques by sending two emails or an SMS and email – one benign and one containing a malicious element – to train users on this tactic used by APT groups.
- Benchmarking: A patented feature to conduct an identical scenario and receive an additional report that provides an anonymous comparison of your results with other Cofense customers or industry peers that ran the same scenario.
- Highly Personalized: Simulate advanced social engineering tactics by using specific public, known details about email recipients gathered from internal and public sources.
Though Cofense PhishMe conditions employees to resist phishing attempts, “not clicking” isn’t enough. In the midst of a phishing attack, early detection matters. Visibility is critical for security operations and incident response teams to minimize the time an attacker is on your network.
Enabling Human Sensors
Cofense Reporter and Cofense Reporter for Mobile empowers users to proactively participate in an organization’s security program. By simplifying the process for employee reporting of suspicious email, Cofense Reporter makes it easy for your employees to report any suspicious email they receive.
Cofense Reporter is an easy-to-install and use add-in for the PC or MAC with Outlook, o365, Gmail, or Lotus Notes email toolbars. Cofense Reporter for Mobile is available for the Microsoft Outlook app on iOS and Android. When clicked, Cofense Reporter sends the suspicious email to your security team. It automatically discerns emails reported during phishing simulations from those sent by unknown sources, ensuring that only reports of potentially malicious emails are delivered to appropriate security staff or direction into Cofense Triage for fast analysis.
Experience and Engagement
Hands-on experience and positive reinforcement change employee behavior and promote diligence in the fight against phishing attempts. CofenseTM has shown reductions in organizational susceptibility to phishing attacks by more than 95%. Providing instant feedback when a successful phish is reported or when an employee fails a simulated phish creates a memorable experience. Positive reinforcement is the key to a successful human phishing defense program.
Why Cofense Reporter?
- Standardize and organize your user reporting process
- Detect and respond to email-based threats faster with user-generated reporting
- Analyze URL and malware attachments using third- party integrations
- Minimize impact of breaches with proactive response and improved visibility
- Customizable user feedback encourages employees to be a part of the security process