VendorsKnowBe4
KnowBe4
Cybersecurity reports and statistics published by KnowBe4
8 categories10 reports
Research Reports
Reports and publications from KnowBe4
From Agentic Risk to Human Win: Building a Culture of Security in the Era of Agentic AI
5/20/2026
Phishing Trends Threat Report
4/30/2026
Australia's Cybersecurity Paradox: Strong Defences, Weak Habits
3/10/2026
The State of Human Risk 2025
12/10/2025
KnowBe4 Uncovers Surged Abuse of Legitimate Platforms by Cybercriminals in 2025
10/29/2025
Navigating Cyber Threats Infosecurity Europe 2025 Findings
8/26/2025
Financial Sector Threats Report
8/21/2025
Q2 2025 KnowBe4 Simulated Phishing Roundup Report
7/17/2025
State and Local Cybersecurity: Facing New Burdens Amid Rising Threats
5/27/2025
2025 Phishing By Industry Benchmarking Report
5/13/2025
Recent Statistics & Reports
Small and medium-sized retailers saw significant declines in phishing susceptibility due to training, dropping from 29.3% to 3.7% for small retailers and from 33.3% to 4.2% for medium-sized retailers
4/23/2025•
EnergyPhishingSecurity awareness training
81.9% of phishing victims had their emails leaked in previous breaches.
3/20/2025•
PhishingData breachData leak
Between September 15, 2024 and February 14, 2025, there was a 49.9% increase in phishing emails sent from compromised accounts.
3/20/2025•
Phishing
3,829 days - average domain age for phishing attacks getting through.
3/20/2025•
Phishing
76.4% of all phishing campaigns now use polymorphic phishing tactics.
3/20/2025•
PhishingPolymorphic
Ransomware payloads in phishing attacks have risen by 22.6% over six months, with a sharp 57.5% increase in just three months.
3/20/2025•
RansomwarePhishing
Most polymorphic phishing emails are sent from compromised accounts (52%), followed by phishing domains (25%), and webmail (20%).
3/20/2025•
PhishingPolymorphic
20% of phishing emails between September 15, 2024 and February 14, 2025 relied solely on social engineering.
3/20/2025•
PhishingSocial engineering
There was a 17.3% increase in phishing emails between September 15, 2024 and February 14, 2025 compared to the previous six months.
3/20/2025•
Phishing
64% of phishing attacks are focused on engineering roles.
3/20/2025•
Phishing
25.9% of phishing emails between September 15, 2024 and February 14, 2025 contained attachments.
3/20/2025•
Phishing
Between September 15, 2024 and February 14, 2025, there was a 67.4% incease in the use of third-party platforms for phishing emails.
3/20/2025•
Phishing
Between September 15, 2024 and February 14, 2025, there was a 11.1% incease in phishing emails sent from compromised email addresses within the supply chain.
3/20/2025•
PhishingSupply chain
82.6% of all phishing emails analysed exhibited some use of AI.
3/20/2025•
PhishingAI
In 2024, there was a 47% increase in phishing emails evading detection by Microsoft’s native security and secure email gateways.
3/20/2025•
PhishingEvasionMicrosoft
There was a 22.6% increase in ransomware payloads.
3/20/2025•
Ransomware
New starters typically received a phishing email after 3 weeks.
3/20/2025•
Phishing
Job application-related phishing attacks are not only sent to individual accounts (24%) but also shared mailboxes (52%) and individual inboxes with activated delegate functions (21%) (e.g. a personal assistant has access to an executive’s inbox).
3/20/2025•
Phishing
The phishing hyperlink, malware, and social engineering payloads getting through traditional detection have surged, with phishing hyperlinks increasing by 36.8%, malware by 20%, and social engineering tactics by 14.2% compared to the previous six months.
3/20/2025•
Phishing
On average, phishing emails contained 1058 characters (~188 words)
3/20/2025•
Phishing
Showing 101-120 of 195 results