KnowBe4’s Annual Phishing Benchmarking Report Shows Focusing on the Human Element Still the Best Safeguard Against Cyber Threats
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today released its new 2024 Phishing by Industry Benchmarking Report to measure an organization’s Phish-prone™ Percentage (PPP), which indicates how many of their employees are likely to fall for phishing or social engineering scams.
This year’s report shows that according to baseline testing conducted across all industries, without security awareness training, 34.3% of employees are likely to click on malicious links or comply with fraudulent requests. This is an increase of over one percent in comparison to the 2023 report and highlights the importance of building a strong security culture within organizations to mitigate the human risk that exists when safeguarding against cyber threats.
KnowBe4 analyzed over 54 million simulated phishing tests across more than 11.9 million users from 55,675 organizations in 19 different industries. The resulting baseline PPP measures the percentage of employees in organizations that had not conducted any KnowBe4 security training, who clicked a simulated phishing email link or opened an infected attachment during testing.
The report highlights a key fact: when simulated phishing security testing is integrated with security awareness training, it works. Organizations that commit to regular security awareness training and testing after the initial baseline test saw an average PPP drop to just 18.9% within 90 days. After 12 months of continuous training and testing, the PPP plummeted even further to 4.6%. These results show that to transform cybersecurity culture, existing habits first need to be broken to make way for more secure ones. As employees start to embrace new behaviors, they become habits, over time evolving into standard practices that shape organizational culture and, in turn, creating a workforce that instinctively makes security a priority in their day-to-day work.
Industries particularly vulnerable to cyber threats, scoring the highest PPP, and in dire need of security awareness training are also discussed in the report. The healthcare and pharmaceutical industry remains in the high-risk category with the highest PPP across small- and large-sized organizations scoring 34.7% and 51.4%, respectively. Across medium-sized organizations, the hospitality industry took top billing for the second time in three years with a score of 39.7%.
This report reinforces the crucial role the human element plays in cybersecurity. Although technology is important for preventing and recovering from cyberattacks, human error is still a big contributing factor to data breaches. In fact, according to Verizon's 2024 Data Breach Investigations report, 68% of data breaches were due to accidental actions, the use of stolen credentials, social engineering and malicious privilege misuse. Even though this is an improvement from last year’s 74%, organizations must continue to focus on strengthening the human firewall to safeguard against cyber threats.
An emerging threat vector highlighted in this year’s report is the rapid adoption of AI in certain industries which presents additional risks if not implemented with strong cybersecurity measures.
"The data does not lie; regular and focused security training reshapes how employees interact with potential threats. Our goals are to educate and change behaviors, for employees to instinctively put security first," says Stu Sjouwerman, CEO of KnowBe4. "Furthermore, we are seeing more sophisticated cyber threats emerge because of AI and the need for training is imperative.”
This year’s report also examines international phishing benchmarks from North America, South America, Europe, United Kingdom & Ireland, Africa, Asia, Australia and New Zealand.
To download a copy of the 2024 KnowBe4 Phishing by Industry Benchmarking Report, click here.
About KnowBe4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 65,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. The late Kevin Mitnick, who was an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Organizations rely on KnowBe4 to mobilize their end users as their last line of defense and trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240604089157/en/
Contact information
For more information please contact:
Kathy Wattman at pr@knowbe4.com
727-474-9950
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Kolmar Korea Named One of the TIME’s World’s Best Companies for Sustainable Growth26.12.2024 16:00:00 EET | Press release
Kolmar Korea (KRX: 024720) has been recognized by TIME Magazine as one of the World’s Best Companies for Sustainable Growth 2025. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241226863828/en/ Kolmar Korea on TIME's World's Best Companies in Sustainable Growth 2025 (Image: Kolmar Korea) On November 27, TIME, in collaboration with a global market research firm Statista, unveiled a list of the top 500 companies worldwide, demonstrating exceptional sustainable growth. Kolmar Korea took place 125th around the globe and 6th among Korean companies. Notably, it was the only Korean cosmetics company on the list, which featured a total of 23 Korean companies. The rankings were based on an evaluation of revenue growth, financial stability, and environmental impact, each contributing equally to a final score out of 100 points. TIME and Statista analyzed 3,000 major companies from 150 countries, focusing exclusively on those with trans
Seoul Semiconductor: Philips Lighting Products Ordered to Recall 7-Year-Old Items26.12.2024 09:00:00 EET | Press release
The German District Court of Düsseldorf, on November 19 ruled in favor of Seoul Semiconductor (KOSDAQ:046890) in the patent infringement lawsuits, and also ordered that products manufactured by Philips Lighting and sold since March 2017 be recalled and destroyed. The Court also ruled that a fine of up to €250,000 would be imposed for each violation of this order. On December 17, the German Federal Patent Court also affirmed the validity of these patents, which solidifies the strength of many related patents. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241225151382/en/ Application Examples with CRI 70 or Higher (Photo: Seoul Semiconductor) These court orders relate to the core technology used to achieve CRI 70 (Color Rendering Index 70%) or higher, applicable to all home lighting, automotive lighting products, IT flash, and backlights. Since the effects of these judgments are applicable to all products infringing on the pa
ispace-EUROPE and the Italian Space Agency (ASI) Sign Payload Services Agreement to Transport a Laser Retroreflector Array (LaRA2) on the Moon Surface26.12.2024 09:00:00 EET | Press release
ispace EUROPE S.A. (ispace-EUROPE), the Luxembourg-based subsidiary of ispace, inc., and the Italian Space Agency (ASI) have signed a payload services agreement to transport a Laser Retroreflector Array (LaRA2) to enable accurate position measurements on the Moon via laser ranging experiments, the two organizations announced today. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241225137548/en/ The shape of LaRA2, a palm-sized dome (Photo: Business Wire) The agreement marks the first full-scale contract between ispace-EUROPE and ASI, with both organizations looking to joint future lunar development. LaRA2 is a small, robust, and lightweight instrument built to work without any power source and to survive the harsh surface conditions on the Moon for an extended period of time. It features a precise array of retroreflectors (corner cube prisms) designed to reflect laser beams directly back to their source, regardless of the an
Datopotamab Deruxtecan Application in the EU for Patients with Advanced Nonsquamous Non-Small Cell Lung Cancer Voluntarily Withdrawn24.12.2024 09:00:00 EET | Press release
Daiichi Sankyo (TSE: 4568) and AstraZeneca (LSE/STO/Nasdaq: AZN) have voluntarily withdrawn the marketing authorization application (MAA) in the EU for datopotamab deruxtecan (Dato-DXd) for the treatment of adult patients with locally advanced or metastatic nonsquamous non-small cell lung cancer (NSCLC) based on the TROPION-Lung01 phase 3 trial. The decision to withdraw the MAA was informed by feedback from the Committee for Medicinal Products for Human Use of the European Medicines Agency (EMA). Daiichi Sankyo and AstraZeneca will continue to work to bring datopotamab deruxtecan to patients with lung cancer in the EU who can benefit and are committed to unlocking the potential of this medicine in lung cancer through our robust clinical development program which includes seven pivotal trials in various lung cancer settings. Datopotamab deruxtecan is a specifically engineered TROP2 directed DXd antibody drug conjugate (ADC) discovered by Daiichi Sankyo and being jointly developed by Dai
Vertex to Present at the 43rd Annual J.P. Morgan Healthcare Conference on January 1323.12.2024 23:05:00 EET | Press release
Vertex Pharmaceuticals Incorporated (Nasdaq: VRTX) today announced that Dr. Reshma Kewalramani, Chief Executive Officer and President, will present at the 43rd Annual J.P. Morgan Healthcare Conference on Monday, January 13, 2025 at 10:30 a.m. ET/7:30 a.m. PT. A live webcast of management's remarks will be available through the Vertex website, www.vrtx.com in the "Investors" section under the "News and Events" page. A replay of the conference webcast will be archived on the company's website. About Vertex Vertex is a global biotechnology company that invests in scientific innovation to create transformative medicines for people with serious diseases. The company has approved medicines that treat the underlying causes of multiple chronic, life-shortening genetic diseases — cystic fibrosis, sickle cell disease and transfusion-dependent beta thalassemia — and continues to advance clinical and research programs in these diseases. Vertex also has a robust clinical pipeline of investigational
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom