Cofense PhishMe


No matter how good your perimeter security, phishing emails still reach users and threaten to trigger breaches. The Cofense Phishing Defense CenterTM finds that 90% of user-reported emails are in environments using secure email gateways (SEGs). Every phishing email that reaches the user is an attack on your organization. When technology fails, users need to become human sensors and report phishing, so the SOC can remediate the threat. But how can users report if they don’t recognize today’s evolving attacks? Empower and condition your employees to recognize and resist phishing attempts with Cofense PhishMe.

Change User Behavior

Cofense PhishMe was designed to change risky behavior and enable employees to recognize and report phishing emails. The CofenseTM methodology entails periodically immersing employees in simulated real-life phishing scenarios that deliver hands-on experience with safe examples and on-the-spot education opportunities. The Cofense research teams use real phishing emails to create timely examples and content focused on today’s greatest threats such as Business Email Compromise (BEC), HTTPS Spoofing, ransomware, and attachment based attacks.

Automate to Maximize Effectiveness

Save time while aligning your phishing program to the evolving threat landscape. Cofense PhishMe offers intelligent scenario selection and delivery automation. Moreover, it provides a series of prepared scenarios, landing pages, attachments, and educational pages scheduled to run over the course of a year. The Smart Suggest capability uses machine learning to recommend scenarios based on program history and industry relevance. With Responsive Delivery, ensure that phishing scenarios are delivered only when users are active in their email client, improving engagement and overall program effectiveness.

Build Resilience to Active Phishing Threats

The Cofense Phishing Defense CenterTM, Cofense IntelligenceTM, and Cofense Labs analyze millions of emails and malware samples. Their findings feed the scenarios available in our Active Threat templates, helping users prepare for the latest real-world attacks. You can also pull templates based on attacks that evaded your secure email gateway (SEG)—our new SEG Misses filter makes it easy. Most of the phishing emails Cofense verifies for customers are found in environments where SEGs are present.

Advanced, Next-Level Reporting

Cofense PhishMe provides deep metrics, benchmarking, and enhanced analytics and reporting that goes beyond simple click-rates. Board Reporting, an enhanced analytics feature that only Cofense PhishMe provides, delivers boardroom-level reporting to share with executive teams to showcase the results of your phishing defense program

Simple List Management

No more spending hours manually manipulating employee lists. Save time and resources. Just upload your user list and Cofense PhishMe will do the rest – and without needing to coordinate with email teams for access to active directories. Dynamic Groups simply define a set of criteria and the system will automatically pull the recipients into that defined group. Easy and effective!

Security Awareness – Covered

Cofense PhishMe integrates with Cofense LMSTM to automatically enroll users needing more education. With Cofense LMS, companies can leverage Cofense CBFreeTM modules and easily upload additional content for a fully-personalized catalog and experience. Cofense CBFree is available in multiple languages on over 25 topics with videos and gaming modules.

Beyond Awareness

Educating your employees to understand phishing is a great first step. Now, empower them to help fight phishing with Cofense ReporterTM and Cofense Reporter for Mobile! With a record number of employees accessing work email from mobile devices, it’s more critical than ever and only Cofense delivers this capability – for free.

Find Relevant Content in Our Extensive Library

In security awareness, content is still king. The dedicated team behind Cofense PhishMe constantly updates our phishing, compliance, and cybersecurity content. From videos to infographics to CBTs, the Cofense PhishMe catalog has thousands of educational assets. Additionally, customers can access new premium content from our partners.

Why Cofense PhishMe?

With over 29 million employees trained in 160 countries, Cofense PhishMe has been proven to reduce the threat of employees falling victim to advanced cyber attacks by up to 95% – preparing your last line of defense to recognize and resist tricky phishing attempts.

Click Only: A phishing email that urges the recipient to click on an embedded link.

Data Entry: A phishing email with a link to a customized landing page that entices users to enter sensitive information.

Attachment-based: A phishing email with seemingly legitimate attachments in a variety of file formats.

Double Barrel: Patented technology that simulates conversational phishing techniques by sending two emails or an SMS and email – one benign and one containing a malicious element – to train users on this tactic used by APT groups.

Benchmarking: A patented feature to conduct an identical scenario and receive an additional report that provides an anonymous comparison of your results with other Cofense customers or industry peers that ran the same scenario.

Highly Personalized: Simulate advanced social engineering tactics by using specific public, known details about email recipients gathered from internal and public sources.

Want to see all that Cofense PhishMe can do?