FL-KNOWBE4
18.1.2023 14:01:41 CET | Business Wire | Press release
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced the results of its 2022 and Q4 2022 top-clicked phishing report. The results include the top email subjects clicked in phishing tests, top attack vector types, holiday phishing email subjects and more insightful information that reveal the most popular phishing email tactics.
Phishing emails continue to be one of the most common and effective methods to maliciously impact a variety of organizations around the world – everyone is a potential victim. Cybercriminals constantly refine their strategies to outsmart end users and organizations by changing phishing email subjects to be more believable and attention grabbing. This shift in phishing tactics over time is evident in the increasing trend of cybercriminals using business-related email subjects.
Business phishing emails are lucrative and successful because of their potential to affect a user’s workday and routine. These include emails from HR, IT, managers and web services such as Google and Amazon. KnowBe4’s 2022 phishing test results reveal that for the year, nearly 50% of email subjects were HR related, while the other half were related to career development, IT and work project notifications. These types of emails bait recipients into opening them and are likely successful because they create a sense of urgency in users to act quickly, sometimes without thinking and taking the time to question the email’s legitimacy.
Additionally, this year’s phishing tests revealed the top vector for the year to be phishing links in the body of an email, which has stayed consistent for the last three consecutive quarters. The combination of these phishing tactics is clearly a working strategy for cybercriminals but detrimental to users and organizations as they can lead to cyber attacks such as business email compromise and ransomware.
Along with an increased utilization of more business-related emails and links within emails, the Q4 2022 phishing test also shares the top holiday phishing email subjects. The holiday season is one of the busiest times of year for online activities and cybercriminals count on end users having their guards down when it comes to staying alert and spotting phishing emails. Like general phishing email subjects, holiday phishing email subjects consist of emails from HR and IT, however, they are also tailored to the holiday season and the festivities that typically happen during that time of the year by mentioning holiday parties, gifts, food and more.
“Cybercriminals are smart and pay attention to what works and what does not when it comes to effective phishing emails,” said Stu Sjouwerman, CEO, KnowBe4. “This is why we see email subjects evolve and upgrade over time to keep up with end users and what they may be susceptible to. Phishing emails are a year-round threat and remain a challenge during the holiday season as well – holiday phishing emails are the one gift that no one wants to receive in their inbox. KnowBe4’s phishing test reports emphasize the importance of new-school security awareness training that educate users on the latest and most common cyber attacks and threats. A strong security culture and an educated workforce is an organization’s best defense to remain vigilant and stay safe online from cybercriminals and their attempted threats.”
To download a copy of the 2022 and the Q4 2022 KnowBe4 Phishing Infographics, visit here and here.
About KnowBe4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 54,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. Kevin Mitnick, an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of thousands of organizations rely on KnowBe4 to mobilize their end users as their last line of defense.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230118005172/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Verdict Expected Soon in Klarna’s $8.3 Billion Antitrust Lawsuit Against Google24.2.2026 19:09:00 CET | Press release
PriceRunner v. Google: Sweden’s Largest-Ever Civil Damages Claim Reaches Decision Stage; Klarna Provides Investor Update Klarna Group plc (NYSE: KLAR) announces that the Patent and Market Court of Sweden (Patent- och marknadsdomstolen) is expected to deliver its verdict on April 15, 2026 in the antitrust damages proceedings brought by Klarna’s subsidiary PriceRunner International AB against Google LLC and Google Ireland Limited. The trial, which ran from October 20 to December 19, 2025, concerned PriceRunner’s claim for approximately $8.3 billion in damages — the largest civil damages claim ever filed in a Swedish court. The Case The claim arises from Google’s abuse of dominance in online comparison shopping, as established by the European Commission in a binding 2017 decision and upheld without reservation by the Court of Justice of the European Union in September 2024. PriceRunner alleges that Google systematically demoted competing price comparison services in its search results whi
INRIX Announces New Generation of AI Traffic Products: Helping to Improve Safety, Reduce Congestion, and Enhance Mobility Operations24.2.2026 16:49:00 CET | Press release
New generative AI capabilities, enhanced incident detection, and expanded customer deployments mark a major evolution of the INRIX Traffic product family INRIX, a global leader in transportation data and analytics, today announced a major expansion of its Trafficfamily of products, delivering innovativeAI-driven capabilities to help transportation agencies and logistics organizations move from reactive traffic management to proactive, safety-focused and efficient operations. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260224267928/en/ INRIX introduces expanded automation, generative AI capabilities, enhanced incident detection, and continuous analytics. Over twenty years ago, INRIX commercialized the first system to use GPS data to create real-time traffic information. In 2019, INRIX launched AI Traffic – the world's first traffic platform to leverage deep learning models and AI to improve the quality and analysis globall
Check Point and ControlPlane Partner to Help Enterprises Securely Scale AI and Accelerate Agentic Innovation24.2.2026 15:30:00 CET | Press release
ControlPlane, a specialist AI Security and DevSecOps consultancy, and Check Point Software Technologies Ltd., a pioneer and global leader in cyber security solutions, today announced a strategic collaboration to help enterprises securely adopt Large Language Models (LLMs) and agentic AI systems at scale. The partnership delivers a comprehensive, regulator-ready security framework designed to reduce risk, protect sensitive data, and enable organizations to move confidently from AI experimentation to production deployment. By combining Check Point’s AI-native threat prevention platform with ControlPlane’s deep expertise in cloud native architectures and DevSecOps, enterprises can operationalize AI securely without slowing innovation. As organizations advance AI initiatives beyond pilots, they face a growing “AI readiness gap.” Emerging threats such as prompt injection, unauthorized access, data leakage, and model misuse introduce risks that traditional security controls were not built to
Clinilabs Establishes EU Headquarters in Basel, Strengthening European Clinical Operations Under New Regional Leadership24.2.2026 15:00:00 CET | Press release
Clinilabs, a leading specialty contract research organization (CRO) focused on central nervous system (CNS) drug and device development, today announced the expansion of its European operations, including the establishment of its European Union headquarters at Switzerland Innovation Park Basel Area, and the appointment of Dr. Anne-Marie Nagy as executive vice president and head of Clinilabs Europe. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260224669284/en/ Dr. Anne-Marie Nagy appointed as Executive Vice President and Head of Clinilabs Europe Switzerland Innovation Park Basel Area is part of Switzerland’s national innovation network and located within the Basel region’s globally recognized life sciences cluster, bringing together biopharma companies, research institutions, and clinical innovation leaders. “Europe is a critical pillar of Clinilabs’ long-term growth strategy,” said Gary K. Zammit, Ph.D., president and chie
Yubico Unveils “YubiNation Partners”: A New Era of Global Channel Partnership to Secure Digital Identities in the Age of AI24.2.2026 15:00:00 CET | Press release
Yubico (NASDAQ STOCKHOLM: YUBICO), a modern cybersecurity company and creator of the most secure passkeys, today announced the launch of YubiNation Partners, a new global Channel program designed to unite a community of security experts. In the face of growing AI-driven cyber threats, the program enables partners to become trusted advisors and cultivate a safer digital world for their customers, making identities private and secure. As the average cost of a corporate security breach climbs to $4.4 million*, with phishing remaining a primary attack vector, the industry can no longer rely on passwords alone. In fact, a 2026 Total Economic Impact study from Forrester Consulting commissioned by Yubico, found that by replacing traditional multi-factor authentication (MFA) and one-time passwords (OTP) with YubiKeys, customers achieved a 265% return on investment (ROI). This effectively eliminated phishing and credential-theft risks, reducing an organization’s risk exposure to breach costs fr
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom