Q. What is this?
A. KnowBe4 is a user-awareness and training tool. We use this tool to send fake phishing emails to your users on a regular basis. When a user falls for one of these fake phishing emails and clicks on a “bad” link in an email, they are taken to a web page that explains how to recognize that email as malicious. Additionally, we are able to track who clicks on links, replies, or opens attachments in these test emails. This gives us the ability to assess your company’s risk level both at large and per user, and identify areas where users need more training to recognize phishing emails.
Q. Does this block phishing emails or add email security?
A. This doesn’t replace your spam filtering service. Instead, its purpose is to strengthen your staff’s ability to recognize phishing emails and prevent user error from triggering a breach at your organization.
Q. How do I know if a suspicious email is a phishing test email from briteCITY?
A. There are two easy ways to find out:
The quickest way is the Phish Alert button in Outlook 2013/2016 for Windows. When you click this button on a suspicious looking email, it will tell you if the email is a phishing test email from briteCITY or not. If it is a test email, there’s nothing left to do. Just know that you spotted the phishing email – good job! If it is NOT a test email from briteCITY, you’ll be notified. The email will also be automatically forwarded to us for review and moved to your Deleted Items folder. If you accidentally do this to an email you need, simply go to your Deleted Items folder, and move it back to Inbox.
If you are on your phone or do not have the Phish Alert button, just give us a call or send an email. We can inspect the email in question and confirm for you whether the email was a phishing test email or not, and if it might be a real phishing email.
Q. Should I use the Phish Alert button on regular spam or subscription-based marketing emails?
A. The Phish Alert button is only used to confirm if a phishing email is a briteCITY test email or not. Only use the Phish Alert button on possible phishing emails. Examples include spoofed senders (someone pretending to be a co-worker or superior), imposter password reset emails with links to fake login pages, emails asking for confidential information, etc. If an email is regular spam (an unwanted email from an unknown sender promoting something, without an “unsubscribe” option), or a mailing list email (subscription-based with an “unsubscribe” option) – you do not need to use the Phish Alert button.
Q: The phishing test emails are too easy / hard / frequent / infrequent / we’re phishing experts / something else – should we stop using this?
A. Every organization is different, but in general – you should continue to use it even if you’re better at it now. If the phishing test emails you are receiving seem to be ineffective in some way, its very easy for us to make adjustments to your program to keep your users on their toes and vigilant about spotting phishing emails and scams. However, even if every user at your company becomes an expert at spotting phishing emails, its critical that they continue to get them. Conditioning is about repetition and exposure. Further, the bad guys aren’t retiring any time soon and are constantly coming up with new ways to trick you. Phishing test emails are based on what’s currently being used by bad guys, which means when they change tack, so do you.
Got a question not on this page, or that should be on this page? Send us an email.