Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    KnowBe4 Press Releases

    • Press Releases
      • /
    • KnowBe4 Research Confirms Effective Security Awareness Training Significantly Reduces Data Breaches

    KnowBe4 Research Confirms Effective Security Awareness Training Significantly Reduces Data Breaches

    TAMPA BAY, FL | Jan 14, 2025

    New KnowBe4 white paper “Effective Security Awareness Training Really Does Reduce Breaches” finds 65% decrease in breach likelihood for organizations with robust security training programs

    KnowBe4, the world-renowned cybersecurity platform that comprehensively addresses human risk management, today released a new white paper that provides data-driven evidence on the effectiveness of security awareness training (SAT) in reducing data breaches.Effective-SAT-Reduces-Breaches

    Over 17,500 data breaches from the Privacy Rights Clearinghouse database were analyzed along with KnowBe4's extensive customer data to quantify the impact of SAT on organizational cybersecurity. This research provides an in-depth perspective on the effectiveness of security awareness training in preventing data breaches. 

    Key findings from the research include:

    1. Organizations with effective SAT programs are 8.3 times less likely to appear on public data breach lists annually compared to general statistics.
    2. 97.6% of KnowBe4's current U.S. customers have not suffered a public data breach since 2005.
    3. Customers who experienced breaches were 65% less likely to suffer subsequent breaches after becoming KnowBe4 customers.
    4. 73% of breaches involving current KnowBe4 customers occurred before they implemented the company's SAT program. 

    KnowBe4 advises organizations to implement SAT programs with at least quarterly training sessions and simulated phishing tests, noting that more frequent engagement can lead to even greater risk mitigation. The study addresses a critical question in cybersecurity: Does security awareness training measurably reduce an organization's risk of real-world cyberattacks? The analysis demonstrates that organizations practicing regular and effective SAT see significant decreases in human risk factors and fewer real-world compromises.

    “If you add up all other causes for successful cyberattacks together, they do not come close to equaling the damage done by social engineering and phishing alone,” said Roger Grimes, data-driven defense evangelist at KnowBe4. “The evidence is compelling and clear. Effective security awareness training, with regular simulated phishing exercises, educates employees and significantly reduces the human risk of cybersecurity threats.”

    This research provides valuable insights into the substantial role that security awareness training plays in changing your security culture, particularly given that social engineering and phishing account for 70% to 90% of data breaches. KnowBe4 defines an effective SAT program as one that includes at least monthly training and simulated phishing campaigns.  

    The full white paper, "Effective Security Awareness Training Really Does Reduce Breaches," is available for download here.

    About KnowBe4

    KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15 years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense.

    More info at www.knowbe4.com. Follow KnowBe4 on LinkedIn and X.