KnowBe4's 2023 Phishing Report: Security Awareness Training Slashes Phish-prone Percentage
KnowBe4 has unveiled its 2023 Phishing by Industry Benchmarking Report for Australia and New Zealand, offering insights into the Phish-prone Percentage (PPP) across various industries and organisation sizes. The report highlights the importance of security awareness training in reducing PPP and strengthening cybersecurity.
The healthcare and pharmaceuticals industry leads the pack among small and medium organisations, with PPPs of 32.3% and 35.8% respectively. However, after just 12 months of security training, the average PPP in these sectors plummeted to 6.4%.
In large organisations, the insurance industry has the highest PPP, standing at 53.2%. Verizon's 2023 Data Breach Investigations report underscores the human element's role in breaches, with 74% involving this factor. To mitigate this risk, KnowBe4's report shows that 90 days of monthly security training can significantly reduce PPP to 17.8%. Without any training, 34.8% of employees in Australia and New Zealand are likely to fall for a phishing scam.
The KnowBe4 report underscores the critical role of security awareness training in combating phishing attacks. Despite the healthcare and pharmaceuticals industry's high initial PPP, a year of training can dramatically reduce this figure. Similarly, the insurance industry's high PPP in large organisations can be significantly lowered with regular training. The report serves as a valuable benchmarking tool for organisations to assess and improve their cybersecurity posture.
