Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Customer Reports: "GSuite Makes Phishing Training Unnecessarily Hard..."

    Stu Sjouwerman | Sep 2, 2018

    1014px-New_Logo_Gmail.svgCustomers report to KnowBe4 that they have issues with gmail and their security awareness training program.

    I am stepping onto my soapbox here, because this is an industry-wide problem, not just with KnowBe4 customers.

    Here is an example. Google, are you listening?

    "It has been very frustrating working through Google Mail (GSuite for Business) in this regard, ironically because their own fraud and phishing filters have been improving.  Improving, but not perfect... 

    "When new tactics appear, or particularly when the fraud is being sent from compromised accounts at companies that our staff have worked with in the past, Google trusts those messages and won't flag them as potentially fraudulent until/unless some critical mass of those messages are sent to other GMail recipients -- usually too late to be of practical use. 

    "The problem is that those phishing attempts are precisely the sort we need to train our staff to spot, question and report!!  We started working with KnowBe4 to train our employees and get them used to seeing such targeted phishing / spear-phishing attempts, and the platform, in general, is very good at doing just that. 

    "The problem with our main-office staff is that Google pretty reliably catches KnowBe4 messages as "fraud", even as it FAILS to catch a substantial portion of the real problem messages.  So the only "training" our staff receive is from the real-world bad guys, where failure cannot be an option!

    "It would be fantastic if there was a way to whitelist / de-flag / trust security awareness training messages from the Gmail filters on our domain, or somehow understand how to craft our training templates so that we don't rise above the flagging threshold. 

    "But I understand that this is a "Google problem", not a KnowBe4 problem... they provide mechanisms to exempt senders from spam controls, but there doesn't seem to be any mechanism to exempt from fraud/virus/phishing ones, so we welcome any advice here. Thanks for your assistance!" ~Jim

    Google, this is a request that will help protect our critical infrastructure. Please take some action and make this a reality.

    Your billion+ users will thank you!

    Warm regards,

    Stu Sjouwerman,

    Founder and CEO, KnowBe4, Inc.

    NewStu-6

     

    Topics: Security Awareness Training

    Secure the Digital Workforce: Human + AI

    KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15 years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense.

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the Founder and Executive Chairman of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog

    Posts By Topic

    View All

    Get the latest insights, trends and security news. Subscribe to CyberheistNews.