KnowBe4’s Annual Phishing Benchmarking Report Shows Focusing on the Human Element Still the Best Safeguard Against Cyber Threats
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today released its new 2024 Phishing by Industry Benchmarking Report to measure an organization’s Phish-prone™ Percentage (PPP), which indicates how many of their employees are likely to fall for phishing or social engineering scams.
This year’s report shows that according to baseline testing conducted across all industries, without security awareness training, 34.3% of employees are likely to click on malicious links or comply with fraudulent requests. This is an increase of over one percent in comparison to the 2023 report and highlights the importance of building a strong security culture within organizations to mitigate the human risk that exists when safeguarding against cyber threats.
KnowBe4 analyzed over 54 million simulated phishing tests across more than 11.9 million users from 55,675 organizations in 19 different industries. The resulting baseline PPP measures the percentage of employees in organizations that had not conducted any KnowBe4 security training, who clicked a simulated phishing email link or opened an infected attachment during testing.
The report highlights a key fact: when simulated phishing security testing is integrated with security awareness training, it works. Organizations that commit to regular security awareness training and testing after the initial baseline test saw an average PPP drop to just 18.9% within 90 days. After 12 months of continuous training and testing, the PPP plummeted even further to 4.6%. These results show that to transform cybersecurity culture, existing habits first need to be broken to make way for more secure ones. As employees start to embrace new behaviors, they become habits, over time evolving into standard practices that shape organizational culture and, in turn, creating a workforce that instinctively makes security a priority in their day-to-day work.
Industries particularly vulnerable to cyber threats, scoring the highest PPP, and in dire need of security awareness training are also discussed in the report. The healthcare and pharmaceutical industry remains in the high-risk category with the highest PPP across small- and large-sized organizations scoring 34.7% and 51.4%, respectively. Across medium-sized organizations, the hospitality industry took top billing for the second time in three years with a score of 39.7%.
This report reinforces the crucial role the human element plays in cybersecurity. Although technology is important for preventing and recovering from cyberattacks, human error is still a big contributing factor to data breaches. In fact, according to Verizon's 2024 Data Breach Investigations report, 68% of data breaches were due to accidental actions, the use of stolen credentials, social engineering and malicious privilege misuse. Even though this is an improvement from last year’s 74%, organizations must continue to focus on strengthening the human firewall to safeguard against cyber threats.
An emerging threat vector highlighted in this year’s report is the rapid adoption of AI in certain industries which presents additional risks if not implemented with strong cybersecurity measures.
"The data does not lie; regular and focused security training reshapes how employees interact with potential threats. Our goals are to educate and change behaviors, for employees to instinctively put security first," says Stu Sjouwerman, CEO of KnowBe4. "Furthermore, we are seeing more sophisticated cyber threats emerge because of AI and the need for training is imperative.”
This year’s report also examines international phishing benchmarks from North America, South America, Europe, United Kingdom & Ireland, Africa, Asia, Australia and New Zealand.
To download a copy of the 2024 KnowBe4 Phishing by Industry Benchmarking Report, click here.
About KnowBe4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 65,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. The late Kevin Mitnick, who was an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Organizations rely on KnowBe4 to mobilize their end users as their last line of defense and trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240604089157/en/
Contact information
For more information please contact:
Kathy Wattman at pr@knowbe4.com
727-474-9950
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Mesmerise to collaborate with Mayo Clinic to Transform Medical Education and Healthcare Workforce Training14.1.2025 00:10:00 EET | Press release
Mesmerise is proud to announce the creation of NeuRealities, Inc., a transformative company designed to revolutionize medical education and healthcare training. As part of a know-how agreement with Mayo Clinic, the new company seeks to leverage Mayo Clinic’s unparalleled clinical expertise and trusted knowledge with Mesmerise’s pioneering advancements in AI-powered spatial computing to set a new standard for excellence in immersive learning experiences. NeuRealities aims to introduce an open-standards digital platform that redefines how healthcare professionals learn and train. By integrating hyper-realistic AI-enabled digital humans, adaptive immersive experiences, and dynamic content tailored to individual learners, the platform can address critical gaps in medical education. Its first initiative—CT training for radiologic technicians—delivers interactive, hands-on scenarios that simplify complex medical concepts, allowing the potential for training to be more efficient, accessible,
Jefferies to Hold Global Trading Day on January 16 to Support Los Angeles Wildfire Relief Efforts13.1.2025 23:15:00 EET | Press release
Jefferies announced today that it will hold a Global Trading Day on January 16, 2025, to raise funds for organizations supporting first responders and those impacted by the fires. Jefferies will donate 100% of net global commissions on January 16 for all trading in equities and fixed income by the Firm’s clients. Jefferies will also make a $1 million donation and encourage its nearly 6,000 employees to personally support relief efforts. During the month following this Global Trading Day, contributions will be carefully allocated to qualified charities to ensure the proceeds go directly to support the people and communities most in need. Rich Handler, CEO, and Brian Friedman, President of Jefferies, said: “We are heartbroken by the wildfires causing unfathomable destruction in the Los Angeles area. Our firm was founded in Los Angeles 62 years ago, and it has always been a resilient community, full of dynamism, opportunity and strength. Our hearts go out to all those affected, and we sta
AEM Launches WMO-Compliant Automated Weather Station to Elevate Global Weather Monitoring13.1.2025 17:00:00 EET | Press release
AEM, the essential source for environmental insights, today announced its WMO-compliant AEM Apex Automated Weather Station (AWS). This state-of-the-art solution sets a new benchmark for precision, reliability, and durability, meeting the strict standards of the World Meteorological Organization (WMO). Designed to address the toughest challenges in weather monitoring, the WMO-compliant AWS offers unparalleled accuracy and performance for a variety of critical applications, from localized climate research to large-scale weather networks. Key Benefits of the WMO-Compliant AWS Precision Data for Better Decisions: Provides WMO-compliant measurements with strict tolerances to support critical applications. Seamless Global Collaboration: Enables efficient data sharing with regional and global partners, fostering enhanced coordination for monitoring and forecasting. Reliability in Extreme Conditions: Built to deliver continuous, accurate data with minimal maintenance, even in the most demandin
Starr Names Peter Hirs to Succeed Howard Smith as CFO13.1.2025 16:30:00 EET | Press release
Starr announced that Peter Hirs has been named the company’s chief financial officer, effective January 13, succeeding Howard I. Smith, who is retiring after more than 40 years at Starr and related entities. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250113071409/en/ Peter Hirs, chief financial officer, Starr (Photo: Business Wire) Hirs brings significant finance and insurance experience to Starr, having spent the past 20 years at a global insurance carrier, where he managed regional finance teams across the world and led mergers and acquisitions activities. In his new role, Hirs will oversee the organization’s global finance operations. He is based at Starr’s head office in New York. Smith had led Starr’s financial operations since 2005, when Maurice R. “Hank” Greenberg, Starr’s chairman emeritus, re-established Starr as a free-standing investment and insurance organization, and he worked closely with Hank prior to that
Klevu Joins Forces with Searchspring to form Athos Commerce, Creating a Leading Comprehensive, Global AI-Backed Ecommerce Optimization Platform13.1.2025 16:00:00 EET | Press release
Searchspring, a global leader in online product discovery and portfolio company of PSG, has announced a combination with Klevu, an AI-driven search and discovery company. Headquartered in Finland, Klevu serves clients globally. This combination brings together AI-driven product discovery, on-site search, personalization, merchandising, multi-channel product syndication, and cross-sell capabilities into a single, integrated platform rebranded as Athos Commerce, and backed by PSG. The combined platform will provide ecommerce professionals with an ultimate solution to help improve the online shopping experience and optimize revenue. “Joining forces with Athos Commerce is a step forward for Klevu,” said Nilay Oza, CEO and Co-Founder of Klevu. “We believe our advanced AI-powered technology, and shared vision for unified personalization aligns perfectly. We look forward to expanding our reach and innovating faster, ultimately driving higher conversions and enhancing customer experiences for
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom