FL-KNOWBE4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced the results of its 2022 and Q4 2022 top-clicked phishing report. The results include the top email subjects clicked in phishing tests, top attack vector types, holiday phishing email subjects and more insightful information that reveal the most popular phishing email tactics.
Phishing emails continue to be one of the most common and effective methods to maliciously impact a variety of organizations around the world – everyone is a potential victim. Cybercriminals constantly refine their strategies to outsmart end users and organizations by changing phishing email subjects to be more believable and attention grabbing. This shift in phishing tactics over time is evident in the increasing trend of cybercriminals using business-related email subjects.
Business phishing emails are lucrative and successful because of their potential to affect a user’s workday and routine. These include emails from HR, IT, managers and web services such as Google and Amazon. KnowBe4’s 2022 phishing test results reveal that for the year, nearly 50% of email subjects were HR related, while the other half were related to career development, IT and work project notifications. These types of emails bait recipients into opening them and are likely successful because they create a sense of urgency in users to act quickly, sometimes without thinking and taking the time to question the email’s legitimacy.
Additionally, this year’s phishing tests revealed the top vector for the year to be phishing links in the body of an email, which has stayed consistent for the last three consecutive quarters. The combination of these phishing tactics is clearly a working strategy for cybercriminals but detrimental to users and organizations as they can lead to cyber attacks such as business email compromise and ransomware.
Along with an increased utilization of more business-related emails and links within emails, the Q4 2022 phishing test also shares the top holiday phishing email subjects. The holiday season is one of the busiest times of year for online activities and cybercriminals count on end users having their guards down when it comes to staying alert and spotting phishing emails. Like general phishing email subjects, holiday phishing email subjects consist of emails from HR and IT, however, they are also tailored to the holiday season and the festivities that typically happen during that time of the year by mentioning holiday parties, gifts, food and more.
“Cybercriminals are smart and pay attention to what works and what does not when it comes to effective phishing emails,” said Stu Sjouwerman, CEO, KnowBe4. “This is why we see email subjects evolve and upgrade over time to keep up with end users and what they may be susceptible to. Phishing emails are a year-round threat and remain a challenge during the holiday season as well – holiday phishing emails are the one gift that no one wants to receive in their inbox. KnowBe4’s phishing test reports emphasize the importance of new-school security awareness training that educate users on the latest and most common cyber attacks and threats. A strong security culture and an educated workforce is an organization’s best defense to remain vigilant and stay safe online from cybercriminals and their attempted threats.”
To download a copy of the 2022 and the Q4 2022 KnowBe4 Phishing Infographics, visit here and here.
About KnowBe4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 54,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. Kevin Mitnick, an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of thousands of organizations rely on KnowBe4 to mobilize their end users as their last line of defense.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230118005172/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
GeologicAI Announces Acquisition of Lumo Analytics to Complete Its Integrated Sensor Suite Across Critical Minerals and Rare Earth Elements17.12.2025 17:53:00 CET | Press release
GeologicAI, the global leader in High-Resolution Decision Engineering for the critical minerals sector, today announced its acquisition of Lumo Analytics, a provider of the most compact and efficient Laser-Induced Breakdown Spectroscopy (LIBS) scanner in the market. LIBS is a rapid, non-destructive technique that uses a high-energy laser pulse to vaporize a tiny spot on a rock, creating a short-lived plasma which emits light unique to the elements present when it cools. This spectral “fingerprint” provides immediate chemical information about the material. For the mining sector, this means faster geochemical insights directly at the source, enabling more efficient exploration and resource evaluation. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251217715846/en/ The transaction firmly cements GeologicAI’s position as the only truly comprehensive and integrated source of sensor data for the critical minerals industry. Buildi
Incyte Announces European Commission Approval of Minjuvi® (tafasitamab) for the Treatment of Relapsed or Refractory Follicular Lymphoma17.12.2025 17:20:00 CET | Press release
Minjuvi® (tafasitamab) in combination with lenalidomide and rituximab is the first CD19- and CD20-dual-targeted immunotherapy combination regimen approved for eligible patients in Europe with relapsed or refractory FLPatients with relapsed or refractory FL achieved significantly improved progression-free survival with Minjuvi in combination with rituximab and lenalidomide in the Phase 3 inMIND registration trialIn Western countries, including Europe, relapsed or refractory FL affects 2-4 out of every 100,000 people1 Incyte (Nasdaq:INCY) today announced that the European Commission (EC) has approved Minjuvi® (tafasitamab) in combination with lenalidomide and rituximab for the treatment of adult patients with relapsed or refractory follicular lymphoma (FL) (Grade 1-3a) after at least one line of systemic therapy. "The EC approval of Minjuvi addresses a critical need, bringing a new, first-of-its-kind, chemotherapy-free option to patients in Europe with relapsed or refractory FL,” said Bi
Rigaku Launches ONYX 3200, a Metrology Instrument for Semiconductor Manufacturing17.12.2025 16:00:00 CET | Press release
Enables complete metal inspection for all processes from chip wiring to advanced packaging on a single platform Rigaku Corporation, a global solution partner in X-ray analytical systems and a group company of Rigaku Holdings Corporation (headquarters: Akishima, Tokyo; CEO: Jun Kawakami; hereinafter “Rigaku”) announced the launch of the ONYX 3200, a new semiconductor metrology system to measure film thickness, composition and bump* structures for wafer-level processes. The system is engineered to help manufacturers stabilize quality and increase yield in the metal-wiring formation (back-end-of-line (BEOL)) and packaging processes of semiconductor chips. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251216597402/en/ ONYX 3200 Due to accelerating demands for AI, high-performance computing, data centers, mobile devices, and other devices, chip wiring and interconnect structures have grown increasingly delicate and complex. As a
Taylor Wessing Diversifies Its International Strategy17.12.2025 15:05:00 CET | Press release
International law firm Taylor Wessing is set to diversify its strategy within its international alliance, in order to push international growth and innovation. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251217415857/en/ Dr. Oliver Bertram, Global Co-Chair at Taylor Wessing The English part of the partnership is seeking a merger with US law firm Winston & Strawn and would – depending on a corresponding partner decision, which is still pending – leave the Taylor Wessing alliance at the end of April 2026. Both parties wish to continue their successful joint international client work unchanged. Therefore, collaboration between Taylor Wessing and future Anglo-American firm Winston Taylor will continue seamlessly based on a cooperation agreement, ensuring that clients will not experience any change in their collaboration with Taylor Wessing. With the firm’s new open strategy, Taylor Wessing equally meets the strategic requirem
ISACA to Lead Global Credentialing for CMMC Cybersecurity Framework as International Cyber Readiness Standards Rise17.12.2025 15:00:00 CET | Press release
ISACA appointed to certify professionals assessing organisations against the US Department of War’s (DoW) Cybersecurity Maturity Model Certification (CMMC) programme.New requirements mean that all global businesses supplying to US DoW will need to be compliant with this framework, impacting over 200,000 organisationsAppointment supports global demand for consistent, verifiable cyber maturity amid escalating cyber threats and growing assessor shortages.The Cyber AB remains the official accreditation body for the CMMC programme, authorizing the CAICO and other CMMC ecosystem parties As cyber threats escalate and governments raise expectations around operational resilience, ISACA has been appointed to lead the global credentialing programme for the U.S. DoW’s Cybersecurity Maturity Model Certification (CMMC) program. The appointment positions ISACA – the international association for cybersecurity, audit and digital trust – as the exclusive CMMC Assessor and Instructor Certification Organ
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom