Q2 2025 KnowBe4 Simulated Phishing Roundup Report

80.6% of the top 20 clicked links originated from internally-themed simulations.

HR-related themes were cited in 42.5% of phishing failures.

71.9% of interactions with malicious landing pages involved branded content.

80.6% of the top 20 clicked links originated from internally-themed simulations.

PDF attachment clicks in phishing simulations increased by 8.1% compared to Q1 2025.

Among internally-themed links, 68.2% utilised domain spoofing techniques.

Internal-themed topics accounted for 98.4% of the top 10 most-clicked email templates in the phishing simulations.

Internal-themed topics accounted for 98.4% of the top 10 most-clicked email templates in the phishing simulations.

PDFs comprised the majority, 61.1%, of the top 20 attachments clicked in phishing simulations.

PDF attachment clicks in phishing simulations increased by 8.1% compared to Q1 2025.

71.9% of interactions with malicious landing pages involved branded content.

IT-related themes were cited in 21.5% of phishing failures.