FL-KNOWBE4
18.1.2023 14:01:41 CET | Business Wire | Press release
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced the results of its 2022 and Q4 2022 top-clicked phishing report. The results include the top email subjects clicked in phishing tests, top attack vector types, holiday phishing email subjects and more insightful information that reveal the most popular phishing email tactics.
Phishing emails continue to be one of the most common and effective methods to maliciously impact a variety of organizations around the world – everyone is a potential victim. Cybercriminals constantly refine their strategies to outsmart end users and organizations by changing phishing email subjects to be more believable and attention grabbing. This shift in phishing tactics over time is evident in the increasing trend of cybercriminals using business-related email subjects.
Business phishing emails are lucrative and successful because of their potential to affect a user’s workday and routine. These include emails from HR, IT, managers and web services such as Google and Amazon. KnowBe4’s 2022 phishing test results reveal that for the year, nearly 50% of email subjects were HR related, while the other half were related to career development, IT and work project notifications. These types of emails bait recipients into opening them and are likely successful because they create a sense of urgency in users to act quickly, sometimes without thinking and taking the time to question the email’s legitimacy.
Additionally, this year’s phishing tests revealed the top vector for the year to be phishing links in the body of an email, which has stayed consistent for the last three consecutive quarters. The combination of these phishing tactics is clearly a working strategy for cybercriminals but detrimental to users and organizations as they can lead to cyber attacks such as business email compromise and ransomware.
Along with an increased utilization of more business-related emails and links within emails, the Q4 2022 phishing test also shares the top holiday phishing email subjects. The holiday season is one of the busiest times of year for online activities and cybercriminals count on end users having their guards down when it comes to staying alert and spotting phishing emails. Like general phishing email subjects, holiday phishing email subjects consist of emails from HR and IT, however, they are also tailored to the holiday season and the festivities that typically happen during that time of the year by mentioning holiday parties, gifts, food and more.
“Cybercriminals are smart and pay attention to what works and what does not when it comes to effective phishing emails,” said Stu Sjouwerman, CEO, KnowBe4. “This is why we see email subjects evolve and upgrade over time to keep up with end users and what they may be susceptible to. Phishing emails are a year-round threat and remain a challenge during the holiday season as well – holiday phishing emails are the one gift that no one wants to receive in their inbox. KnowBe4’s phishing test reports emphasize the importance of new-school security awareness training that educate users on the latest and most common cyber attacks and threats. A strong security culture and an educated workforce is an organization’s best defense to remain vigilant and stay safe online from cybercriminals and their attempted threats.”
To download a copy of the 2022 and the Q4 2022 KnowBe4 Phishing Infographics, visit here and here.
About KnowBe4
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 54,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. Kevin Mitnick, an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of thousands of organizations rely on KnowBe4 to mobilize their end users as their last line of defense.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230118005172/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
EIG’s MidOcean Energy Announces $120m Investment from The Arab Energy Fund as Part of Equity Raise20.5.2026 17:29:00 CEST | Press release
MidOcean Energy (“MidOcean” or the “Company”), a liquefied natural gas (LNG) company formed and managed by EIG, today announced a $120 million equity investment from The Arab Energy Fund (‘’TAEF’’), a leading multilateral impact financial institution, as part of its current equity capital raise. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260520063539/en/ TAEF’s investment further strengthens MidOcean’s high-quality investor base and underscores continued strong interest in the Company’s strategy to build a diversified, resilient and long-life global LNG business. There is significant further momentum from additional investors currently in documentation, and MidOcean will continue to raise capital, with a cumulative target of up to $2 billion from new investors. R. Blair Thomas, MidOcean Chairman and EIG CEO, said: “We are delighted to welcome The Arab Energy Fund as a shareholder in MidOcean. Their significant expertise
TestMu AI Expands Real Device Testing With Multi-Language Playwright Support and Advanced Audio Testing for iOS20.5.2026 17:26:00 CEST | Press release
The latest updates enable Playwright automation across Java, Python, and C#, and introduce real-time audio injection capabilities on real iOS devices TestMu AI (formerly LambdaTest), the world’s first full-stack Agentic AI Quality Engineering platform, today announced two major enhancements to its Real Device Cloud: expanded support for Playwright automation across multiple programming languages and the introduction of Audio Injection and Live Audio Input capabilities for real iOS devices. These updates address a growing need for testing modern applications that are not only cross-platform but also increasingly multimodal, involving voice, audio, and real-time user interactions. With the latest release, TestMu AI now supports running Playwright tests on real devices using Java, Python, and C# in addition to existing capabilities. This allows enterprise teams to adopt Playwright within their preferred language ecosystems without being restricted to JavaScript-based workflows. As Playwri
Nexo Championship Returns to Aberdeenshire as Nexo Expands DP World Tour Footprint20.5.2026 16:00:00 CEST | Press release
Nexo renews its Nexo Championship title partnership for the second year in 2026. The Nexo Championship, with a newly increased prize fund of $3 million, will return to Aberdeenshire on August 20-23, 2026. The tournament concludes the 2026 Closing Swing on the Race to Dubai schedule. Nexo, the premier digital assets wealth platform, and the DP World Tour have confirmed a renewed agreement that will see the Nexo Championship return to Trump International Golf Links in Aberdeenshire from August 20-23, 2026. The tournament will serve as the concluding event of the DP World Tour’s Closing Swing – the final event of the first phase of the 2026 Race to Dubai. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260520684059/en/ Nexo Championship 2026 In 2025, Nexo joined the DP World Tour as its Official Digital Wealth Platform through 2027 before soon adding the title rights at the Nexo Championship. For its part, the Nexo Championship
Visa Threats Report: As Network Security Strengthens, Criminals Accelerate Shift to AI-Enabled Social Engineering20.5.2026 15:16:00 CEST | Press release
Spring 2026 Biannual Threats Report shows how strengthening payment security is pushing criminals toward AI-enabled social engineering Visa (NYSE: V), a world leader in digital payments, today released its Spring 2026 Biannual Threats Report, revealing that scams have become the fastest-growing source of consumer harm as criminals increasingly use artificial intelligence and social engineering to manipulate people into authorizing payments themselves. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260520153924/en/ The report draws on intelligence from Visa’s global network and underscores a critical shift in the fraud landscape: while core payment security continues to strengthen at the network level, criminals are redirecting their efforts away from technical system compromises toward exploiting human trust. From July to December 2025, Visa identified nearly $1 billion in scam-related activity, making scams the single large
1GLOBAL Launches Verint Communications Analytics to Enhance Cloud Compliance for Financial and Regulated Industries20.5.2026 15:00:00 CEST | Press release
1GLOBAL now offers transcription with insights into mobile calls in 10 countries on Verint Communications Analytics, built specifically for financial markets and trading environmentsStreamlines the compliance investigation and mobile call monitoring process through transcription and analysisSupports transcription and translation from 30+ languages into English with near real-time processing 1GLOBAL, a pioneer in global telecommunications solutions, today announced its launch of Verint® Communications Analytics, a key offering within Verint Financial Compliance (VFC) providing mobile call transcription and analytics capabilities. Verint Communications Analytics has been designed to help financial institutions and regulated organizations accelerate productivity when monitoring voice calls (including mobile), identifying behavioral patterns, querying data intentionally by topic, risks, keywords or sentiment, identifying misuse and reducing regulatory risk. Verint Communications Analytics
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom