PhishMe Simulator


WINNER – Best IT-Security-Related Training Program
– 2016 SC Magazine Awards

In Q1 2016, the PhishMe Research team determined that ransomware now accounts for 50% of all phishing emails. As of the end of March, 93% of all phishing emails analyzed contained encryption ransomware. And the number of phishing emails hit 6.3 million in the first quarter of this year, a 789% increase over the last quarter of 2015.

The numbers are alarming. But what can you do to help prevent becoming one of the statistics when your technology can’t keep pace with attackers?

Empower your employees to be your last line of defense with PhishMe Simulator.

PhishMe Simulator uses industry-proven behavioral conditioning methods to better prepare employees to recognize and resist malicious phishing attempts–transforming one of your biggest liabilities into your strongest defense.

Changing Behavior

PhishMe Simulator was designed to change risky behavior and enable employees to recognize and report malicious phishing emails.The PhishMe methodology entails periodically immersing employees in simulated real-life phishing scenarios that deliver hands-on experience with safe examples and on-the-spot education opportunities.  The PhishMe research teams use real phishing emails to create timely examples and content focused on today’s greatest threats such as Business Email Compromise (BEC) and ransomware.

Real-World Phishing Simulations

PhishMe scenarios recreate a variety of such real-world attack techniques and escalate the latest and most critical phishing simulations as ‘Active Threats’ that include:

  • Ransomware
  • Business Email Compromise (BEC)
  • Spear phishing attacks
  • Social engineering attacks
  • Malware and malicious attachments
  • Drive-by attacks
  • Advanced conversational phishing attacks

By leveraging phishing examples analyzed as part of the PhishMe Intelligence service, PhishMe Simulator delivers the latest tricks and tactics being used in real-world phishing attacks.

Simple Administration

Built to accommodate the needs of all organizations, PhishMe Simulator is easy to administer and provides deep metrics, benchmarking, enhanced analytics and reporting options. The solution provides pre-built and customizable phishing scenarios in an ever-expanding library of content in multiple languages, featuring HTML 5 templates, videos and gaming modules. Topics cover a multitude of security concerns, including:

  • Phishing
  • Security awareness
  • Risk and compliance
  • Social media in various formats

Content. Content. Content.

Content is king – and it’s no different when it comes to educating your entire organization about cybersecurity threats.  PhishMe has a substantial, dedicated team focused on producing the latest – and greatest   – phishing, compliance and cybersecurity content available.  From videos to infographics to CBTs, PhishMe provides an extensive catalog from which you can choose.

PhishMe Small Business Edition

All businesses need protection against phishing attacks. That’s why we developed easy-to-use and manage solutions specifically for small and medium-sized businesses. PhishMe Simulator SBE helps companies with up to 500 employees improve awareness and resiliency around phishing attacks – the #1 cause of data breaches.

PhishMe Free

PhishMe believes that all businesses – regardless of resources and budget – should have the tools they need to improve their cybersecurity awareness and resilience. For companies with modest budgets and resources and under 500 employees, we offer PhishMe Free.

Why PhishMe Simulator?

With over 27 million employees trained in 160 countries, PhishMe has been proven to reduce the threat of employees falling victim to advanced cyber attacks by up to 95% – preparing your last line of defense to recognize and resist tricky phishing attempts.

Click Only: An email that urges the recipient to click on an embedded link.

Data Entry: An email with a link to a customized landing page that entices users to enter sensitive information.

Attachment-based: An email with seemingly legitimate attachments in a variety of file formats.

Double Barrel: Patented technology that simulates conversational phishing techniques by sending two emails or an SMS and email – one benign and one containing a malicious element – to train users on this tactic used by APT groups.

Benchmarking: A patented feature to conduct an identical scenario and receive an additional report that provides an anonymous comparison of your results with other PhishMe customers or industry peers that ran the same scenario.

Highly Personalized: Simulate advanced social engineering tactics by using specific public, known details about email recipients gathered from internal and public sources.


Fortune 100 Customers


Content Scenarios


Users Turned Informants