Cofense PhishMe


NOW AVAILABLE: Cofense PhishMe Certification
The first and only industry-certification for phishing simulation programs
Learn More

In Q1 2016, the Cofense Research team determined that ransomware now accounts for 50% of all phishing emails. As of the end of March, 93% of all phishing emails analyzed contained encryption ransomware. And the number of phishing emails hit 6.3 million in the first quarter of this year, a 789% increase over the last quarter of 2015. The numbers are alarming. But what can you do to help prevent becoming one of the statistics when your technology can’t keep pace with attackers? Empower your employees to be your last line of defense with Cofense PhishMe. Cofense PhishMe uses industry-proven behavioral conditioning methods to better prepare employees to recognize and resist malicious phishing attempts–transforming one of your biggest liabilities into your strongest defense.

Changing Behavior

Cofense PhishMe was designed to change risky behavior and enable employees to recognize and report malicious phishing emails.The Cofense methodology entails periodically immersing employees in simulated real-life phishing scenarios that deliver hands-on experience with safe examples and on-the-spot education opportunities.  The Cofense research teams use real phishing emails to create timely examples and content focused on today’s greatest threats such as Business Email Compromise (BEC),ransomware, and attachment based attacks.

Real-World Phishing Simulations

Cofense scenarios recreate a variety of such real-world attack techniques and escalate the latest and most critical phishing simulations as ‘Active Threats’ that include:

  • Ransomware
  • Business Email Compromise (BEC)
  • Spear phishing attacks
  • Social engineering attacks
  • Malware and malicious attachments
  • Drive-by attacks
  • Advanced conversational phishing attacks

By leveraging phishing examples analyzed as part of the Cofense Intelligence service, Cofense PhishMe delivers the latest tricks and tactics being used in real-world phishing attacks.

Recipient Management

No more spending hours manually manipulating employee lists. Save time and resources. Just upload your user list and PhishMe will do the rest. You will now have more time to devote to other aspects of your human phishing defense program. And with Dynamic Groups customers define a set of criteria and the system will automatically pull the recipients into that defined group.

Simple Administration

Built to accommodate the needs of all organizations, Cofense PhishMe is easy to administer and provides deep metrics, benchmarking, enhanced analytics and reporting options that include custom Board Reports. You are also able to automatically enroll users into the Cofense LMS. The solution provides pre-built and customizable phishing scenarios in an ever-expanding library of content in multiple languages, featuring HTML 5 templates, videos and gaming modules. Topics cover a multitude of security concerns, including:

  • Phishing
  • Security awareness
  • Risk and compliance
  • Social media in various formats

Content. Content. Content.

Content is king – and it’s no different when it comes to educating your entire organization about cybersecurity threats.  Cofense has a substantial, dedicated team focused on producing the latest – and greatest   – phishing, compliance and cybersecurity content available.  From videos to infographics to CBTs, Cofense provides an extensive catalog from which you can choose.

Cofense PhishMe Small Business Edition

All businesses need protection against phishing attacks. That’s why we developed easy-to-use and manage solutions specifically for small and medium-sized businesses. Cofense PhishMe SBE helps companies with up to 500 employees improve awareness and resiliency around phishing attacks – the #1 cause of data breaches.

Cofense PhishMe Free

Cofense believes that all businesses – regardless of resources and budget – should have the tools they need to improve their cybersecurity awareness and resilience. For companies with modest budgets and resources and under 500 employees, we offer Cofense PhishMe Free.

Why Cofense PhishMe?

With over 27 million employees trained in 160 countries, Cofense has been proven to reduce the threat of employees falling victim to advanced cyber attacks by up to 95% – preparing your last line of defense to recognize and resist tricky phishing attempts.

Click Only: An email that urges the recipient to click on an embedded link.

Data Entry: An email with a link to a customized landing page that entices users to enter sensitive information.

Attachment-based: An email with seemingly legitimate attachments in a variety of file formats.

Double Barrel: Patented technology that simulates conversational phishing techniques by sending two emails or an SMS and email – one benign and one containing a malicious element – to train users on this tactic used by APT groups.

Benchmarking: A patented feature to conduct an identical scenario and receive an additional report that provides an anonymous comparison of your results with other Cofense customers or industry peers that ran the same scenario.

Highly Personalized: Simulate advanced social engineering tactics by using specific public, known details about email recipients gathered from internal and public sources.


Fortune 100 Customers


Content Scenarios


Users Turned Informants