Patent published on August 15, 2023

KnowBe4's New Trick: Catching Fake Emails before They Fool You

A revolutionary invention by KnowBe4 is set to possibly redefine the realm of email security. Known for their breakthroughs in cybersecurity, the company's recent patent, numbered US11729206B2, is paving the way for a more consolidated and secure email environment.

Infusing a layer of additional security, KnowBe4 is piloting a study where fake emails, also known as "phishing" emails, are forwarded to check the efficiency of an email's security system. It is an endeavor dedicated to assessing the robustness of the security shield and its ability to block these dummy yet potentially threatening emails.

This exploration germinated from the increasing need to keep security systems updated and responsive to new kinds of threats. As the landscape of cybersecurity evolves, the need for frequent updates and checks has become essential. This, however, could increase the workload on system administrators, making it a challenging task to maintain.

KnowBe4's innovation aims to simplify this task. With a unique approach to handle the situation, the company simulates phishing communications to test the system's reliability. They have designed a process that marks or "whitelists" certain domain names and email senders. This marking deems the simulated phishing communications from these domains and senders as safe and allows them through the security system. As obvious, this method requires regular revision with the introduction of new features to the security system, a demanding task for administrators.

To address this issue, KnowBe4's innovative patent rides on servers that can be stored in a well-secured data center. This setup not only assures improved system manageability and increased data security but also ensures system performance, as high-performance networks localize the servers and storage systems.

KnowBe4's clever way of conducting fake test runs on an email security system using their product, PhishER, is something worth noting. It stands to nullify the possibility of the system getting tricked by actual phishing emails, thus ensuring security. This system, if successful, may upset the growing trend of security breaches through emails.

However, despite the promising breakthrough, it's pivotal to note that this is a patent, and we're yet to see if it will eventually materialize into a market product. Nevertheless, it's a noteworthy start towards redesigning our cybersecurity landscape.

Explore more