Security Awareness Training Platform (KMSAT) Change Log

• In the Security Awareness Proficiency Assessment (SAPA) we renamed the Knowledge Area “Security Awareness” to “Human Firewall”. For more information about the SAPA in general, see our What Is the Security Awareness Proficiency Assessment (SAPA)? article.
• If you have admins who set passwords when they add new users, you can now require your users to reset their passwords after they log in. The Require users to reset initial password set by admins setting can be enabled in your Account Settings. For more information, see our How to Edit Your Accounts Settings article.
• Now, for all new accounts, the default phishing language will be set to English (United States). To update the default phishing language for your account, see the Set the Default Language section of our Localization Guide.

New items added to the ModStore:

• exploqii
  • 1 poster
  • 1 security document
  • 8 Compliance Plus training modules
  • 3 Compliance Plus posters
  • 2 Compliance Plus security documents
  • 1 Compliance Plus Mobile-First module
• Popcorn
  • 4 Compliance Plus training modules
  • 1 Mobile-First training module
• KnowBe4
  • 2 Compliance Plus training modules
  • 3 Compliance Plus posters
  • 1 Mobile-First training module
  • 1 Compliance Plus Mobile-First module
  • 2 training modules
  • 1 poster
• The Security Awareness Company
  • 1 Mobile-First module
  • 1 Compliance Plus training module
  • 1 Compliance Plus Mobile-First module
  • 2 training modules
  • 4 posters
  • 3 security documents
• Twist & Shout
  • 12 video modules
• MediaPRO
  • 2 Compliance Plus training modules
  • 3 Compliance Plus Mobile-First modules

• Resellers, Managed Service Providers (MSPs), and Multi-Account Organizations can now use our Phishing Activity Reports. For more information, see our MSP/Reseller/Multi-Account Org: How to Customize and View Phishing Activity Reports article. 
• Now, QR Phishing failures will be considered in the following criteria options for Smart Groups.
  • Any Failures
  • Any Failures but Clicks
  • Failed Phishing Test 
• We are releasing the new Team Dashboard feature in the Learner Experience. This new dashboard allows managers to view their team's training progress and other statistics. For more information, see our Team Dashboard Overview for Admins article.
• We have released the Public Module Store or Public ModStore. The Public ModStore is a storefront that lets you view the training content we currently offer. For more information, see our Public ModStore Guide article.

New items added to the ModStore:

• exploqii
  • 3 Compliance Plus training modules
• Popcorn
  
  • 1 Compliance Plus document
  • 1 training module
  • 1 Mobile-First module
  • 2 Compliance Plus training modules
• The Security Awareness Company
  • 6 security documents
  • 1 poster
• El Pescador
  • 1 Mobile-First module
  • 3 video modules
  • 1 security document
  • 2 posters
  • 2 Compliance Plus training modules
• KnowBe4
  • 1 poster
  • 2 security documents
  • 1 Compliance Plus Mobile-First module

• Under the Phishing tab of your console, you’ll find the new Phishing Templates (Beta) subtab. This feature allows you to filter templates, search by keywords, and find templates localized in your users’ languages. For more information, see our Phishing Templates Tab (Beta) article.
• We have added Phishing Activity Reports to the Reports tab of your platform. You can use these reports to view comprehensive data about your users' PST results. For more information, see our How to Customize and View Phishing Activity Reports article.
• You can now use QR codes in your phishing campaigns. We've added the QR Code phishing template category and the option to add QR codes to the phishing email templates that you create. For more information, see our How to Use QR Code Phishing Security Tests article.

• We have added three new badges to the Learner Experience! The new badges, Eager Beaver, Eagle Eye, and Linguist, can be enabled in your Account Settings. For more information see our How Do I Earn Badges? and Learner Experience Guide articles.

• Resellers, Managed Service Providers (MSPs), and Multi-Account Organizations can now use our Training Activity Reports. For more information, see our MSP/Reseller/Multi-Account Org: How to Customize and View Training Activity Reports article. 

New items added to the ModStore:

• MediaPRO
  • 1 Mobile-First module
  • 1 Compliance Plus poster
  • 5 Compliance Plus documents
  • 1 Compliance Plus Mobile-First module
• KnowBe4
  • 42 Compliance Plus modules
  • 1 Compliance Plus Mobile-First module
  • 1 video module
• Popcorn
  • 3 training modules
• The Security Awareness Company
  • 3 security documents
• exploqii
  • 1 poster
  • 1 video module

• We have added the ability to use SCIM with OneLogin to manage your users and groups in KMSAT. For more information on using SCIM, see our How to Configure SCIM for OneLogin.
• You now have the option to integrate Cyren Inbox Security (CIS) with your PhishER platform. For more information see our Cyren Inbox Security (CIS) Integration article.
• We have added Training Activity Reports to the Reports tab of your platform. You can use these reports to view comprehensive data about your users' enrollments in training campaigns. For more information, see our How to Customize and View Training Activity Reports article.
• We have added the ability to use SCIM to manage your users and groups in KMSAT. We currently support SCIM through Azure and Okta. For more information on using SCIM, see our SCIM Configuration Guide.
• We revamped the design of the KMSAT login pages. This new look is more dynamic and mobile-friendly.
• We have added a Notification History feature that allows you to see which training notifications you have sent to an individual user. You can see when each notification was sent, whether or not the notification was received, and the name of the notification template sent. For more information, see our User Training Progress article.
• We made a minor text change to User Messaging. The Scheduled Messages page has been renamed to Recurring Messages.
• Starting July 1st, 2022, we will no longer support versions of the Phish Alert Button (PAB) older than version 1.2.30 that use TLS 1.0. For more information, see our End of Support for Phish Alert Buttons Using TLS 1.0 article.

New items added to the ModStore:

• We have released Season 4 of The Inside Man from our publisher Twist & Shout! For more information, see this blog post.
• The Security Awareness Company
  • 1 game
  • 2 posters
  • 4 newsletters and security documents
  • 1 training module
•  exploqii
  • 1 training module
  • 3 posters
  • 3 newsletters and security documents
  • 1 Mobile-First module
  • 2 Compliance Plus Mobile-First modules
  • 1 Compliance Plus module
• Popcorn
  
  • 1 Compliance Plus module
  • 2 Compliance Plus Mobile-First modules
• MediaPRO
  • 5 Mobile-First modules
  • 3 Compliance Plus Mobile-First modules
  • 3 Compliance Plus posters
• KnowBe4
  
  • 3 Compliance Plus posters
  • 12 training modules
  • 7 Compliance Plus modules
  • 2 Mobile-First modules
  • 1 Compliance Plus newsletter and security document

• When using AIDA Recommended Optional Learning, if a user has set their Training Language, content available in that language will be shown first in the user’s recommendations and search results. For more information see our Optional Learning Guide.
• We have added English (Great Britain) as an admin console language. For more information and the full list of available languages, see our Localization Guide.
• The phishing industry benchmarking data has been updated on your Dashboard, in Phishing Reports, and in Advanced Reports. For more information about industry benchmarking, see our Industry Benchmarking article.
• We've made several usability updates to the Account Details page in the Management console. These updates include page-wide viewing, organized subscription information, details about the enabled features and settings for each account, and more. For more information, see our Viewing Your Accounts article.
• For Smart Groups, we have added the Failed Phishing Test option to the PhishFlip Event and After Training criteria. This option counts the number of Phishing Security Tests a user has failed, instead of the number of failures the user has had. You may also notice that we rearranged the Phish Event drop-down menus. For more information, see our How to Use Smart Groups article.
• You can now remove user failures from a phishing campaign in bulk with a CSV file. When removing these failures, you can notify all console admins or specific admins of your choice.
• We have released AIDA Recommended Optional Learning for all Diamond accounts. This feature uses KnowBe4’s Artificial Intelligence Driven Agent (AIDA) to automatically recommend content in the Library tab of the Learner Experience (LX). Each user will see optional training content that has been selected specifically for them. This feature also allows users to search for content within their Library tab. For more information, see our Optional Learning Guide.

New items added to the ModStore:

• We have a new publisher named Kontra. Kontra produces security awareness training specifically for development teams.
• Kontra
  • 4 training modules
• The Security Awareness Company
  • 4 newsletters and security docs
• exploqii
  • 1 newsletter and security doc
  • 1 Compliance Plus Mobile-First module
• Popcorn
  • 1 training module
  • 2 Mobile-First modules
  • 1 Compliance Plus document
• KnowBe4
  
  • 4 training modules
  • 2 Compliance Plus modules
  • 3 newsletters and security docs
  • 1 poster
• MediaPRO
  • 1 Mobile-First module

• We are releasing a new feature called User Messaging. This feature allows you to send messages to users within the KMSAT platform. You can send custom messages or our Scam of the Week and Security Hints and Tips newsletters. Users will be able to read their messages under the new Messages tab in the Learner Experience. For more information, see our User Messaging Guide.
• You can now compare your organization's average Security Culture Survey (SCS) score to an average industry-specific SCS score. You can view this information in the corresponding widget on your Dashboard. See our Industry Benchmarking article for more information.
• We've added a Create New User button to the Users tab of the KMSAT console. You can now manually create a new user with details such as their first and last name, email, and job title. For more information, see our Users and Groups article.
• For Smart Groups, we have added the Failed Phishing Test option to the Phish Event criteria. This option counts the number of Phishing Security Tests a user has failed, instead of the number of failures the user has had. You may also notice that we rearranged the Phish Event drop-down menu. For more information, see our How to Use Smart Groups article.
• For Smart Groups, we have retired the Vulnerable Phish Event option. The Vulnerable Plugins scan is a long-retired feature and now past results can no longer be used as criteria in Smart Groups.
• For training campaigns that include the Security Culture Survey (SCS), we have updated the Results by Dimension graph shown on the Assessment Results page.
• The Most Recent Phish-prone Percentage and the Your Last Phish-prone Percentage have changed names. They are now the Account Average Phish-prone Percentage and the Last Campaign Phish-prone Percentage respectively.
• We have added a new option for Brandable Content. When creating a branded theme, you can now include links to relevant documents or policies on the final page. See our Brandable Content Guide for more information.
• On the Training tab, we have made a minor text change to the Users tab and User Progress page of training campaigns. The “Download CSV” button now reads “Generate CSV”.

New items added to the ModStore:

• The Security Awareness Company
  
  • 7 newsletters and security docs
  • 3 posters
• Popcorn
  • 1 Compliance Plus module
  • 1 poster
  • 3 newsletters and security docs
• exploqii
  • 2 training modules
• KnowBe4
  • 4 Compliance Plus modules
  • 2 Compliance Plus Mobile-First module

• As of January 1st, 2021 we will no longer support Microsoft Internet Explorer (IE) or Edge Legacy as a compatible browser for the KnowBe4 admin console and the PhishER console. We will continue to support IE and Edge Legacy for end users on the Learner Experience.
• During December, we are releasing new localization features. This release allows you to send phishing security tests and training notifications in your users’ preferred languages. You can also update user languages individually or in bulk using a CSV file. See our Localization Guide for more information.
• We've localized our Learner Experience (LX) into eight additional languages:
  • Chinese Traditional
  • Danish
  • Finnish
  • Romanian
  • Swahili
  • Thai
  • Turkish
  • Ukrainian
    To learn more about this feature and see what other languages are available, see this article.
• User notifications from the KnowBe4 console, such as welcome emails and password reset notifications, are now localized and will be sent in the user’s preferred training language. For more information on how your users’ preferred language is selected, see this article.
• We made some text updates to Advanced Reporting, for a more concise and cohesive experience.
• We have added the columns Phishing Language and Training Language to the downloadable CSV versions of your phishing and training reports. This change does not impact any of the Advanced Reporting CSV files.
• We added the ability to track individual user scores for eligible training content. This option can be enabled on the Training Campaign creation screen. Scores will be displayed on the user's timeline and on the Users subtab of the training campaign.
• We are rolling out content options for eligible training content. You can edit these options for content in your Library that shows a gear icon next to the name. The first available option is to enable Non-Skip. More options will be released next year.
• We released updates to the Vishing feature of your KnowBe4 Console. You may notice the Vishing tab has faster speeds, improved functionality, and an enhanced user interface.
• New items were added to the ModStore:
  • Security Awareness Company
    • 9 video modules
    • 1 newsletter and security doc
  • El Pescador
    • 1 training module
    • 1 video module
  •  Popcorn
    • 9 training modules
  • Saya University **new publisher!**
    • 1 training module
  •  KnowBe4
    • 5 newsletters and security docs
    • 1 game
    • New translations available for the video module "Stay Safe for the Holidays"
    • The 45-minute 2021 Kevin Mitnick Security Awareness Training
    • The 30-minute 2021 KnowBe4 Security Awareness Training - 30min.
  •  exploqii
    • 1 video module

• We have created three articles to help you keep track of all the videos we offer for KMSAT, PhishER, and our free tools.
  • See:
    • KMSAT Tutorial Videos
    • PhishER Tutorial Videos
    • Free Tools Tutorial Videos
• We made some text changes on the Account Settings page for a more concise and cohesive experience.
• The option to enable MFA in your admin profile has been redesigned to behave the same as the MFA option on a User’s Profile page.
• We released our new Direct Message Injection (DMI) feature for Microsoft 365 users. DMI eliminates the need to whitelist simulated phishing emails by creating a secure link between your KnowBe4 console and your Microsoft 365 Account. See our Direct Message Injection Guide for more information.
• We have updated Vishing to call users from a number in the same country if a number from the same city is not available. 
• New items were added to the ModStore:
  • The Security Awareness Company
    • 2 newsletters and security docs
    • 1 training module
  • El Pescador
    • 1 video module
  •  Popcorn
    • 1 training module
  •  KnowBe4
    • 1 training module
    • 1 video module

• You can now integrate your KnowBe4 Security Awareness Console with your PhishER platform. You can now send PhishER Events and Actions to the user timeline and create Smart Groups based on the information that you gather from your users through this integration. For more information, please visit our PhishER Settings article.
• We released updates to the Advance Reporting feature of your KnowBe4 Console. You may notice the Reports tab has faster speeds, improved functionality, and an enhanced user interface.
• You can now update the training progress of your users in bulk using a CSV file. The Bulk Update option allows you to pass and reset the progress of multiple users for a training campaign or single training course. You can also use this feature to remove multiple users from a training campaign. See the Bulk Progress Update section of this article for more information.
• We have added SCIM support for Azure Active Directory and will be rolling out this feature during October. As part of this release, the Active Directory tab has been renamed to Provisioning. See our SCIM Configuration Guide to learn more about SCIM.
• Our Free Tool, the Email Exposure Check, has been integrated with your KnowBe4 Security Awareness console. This is integration allows you to create monthly email exposure checks on your account's users to ensure that their information has not been found in any recent data breaches. For more information on this new integration, visit the Email Exposure Check article on our Knowledge Base.
• We released updates to the Dashboard of your KnowBe4 Console to improve functionality and streamline the user interface.
• We've updated the Quarterly Product Update video in our Knowledge Base. This video covers new features that have been added to your Security Awareness Training platform over the previous quarter.
• October is Cybersecurity Awareness Month. To celebrate, we have created new landing pages and a weekly series of Security Hints and Tips newsletters. 
  • The following landing pages are available under the Generic landing page category:
    • Cybersecurity Awareness: Password Safety
    • Cybersecurity Awareness: Lock Your Screen
    • Cybersecurity Awareness: Nightmare on Phish Street
    • Cybersecurity Awareness: Cybersecurity Myths
  • The following templates are available under the Security Hints&Tips (Not PST) and Security Hints&Tips (Branded) (Not PST) System Categories:
    • Cybersecurity Awareness Month - Week 1: How to Use Cybersecurity in Your Everyday Life
    • Cybersecurity Awareness Month - Week 2: How to Keep Your Organization Safe—In and Out of the Office
    • Cybersecurity Awareness Month - Week 3: How to Safely Use Telehealth Services
    • Cybersecurity Awareness Month - Week 4: How to Be Prepared for Future Threats
• New items were added to the ModStore:
  • Popcorn
    • 1 newsletter and security doc
  •  exploqii
    • 2 video modules
  • El Pescador
    
    • 3 video modules
    • 3 training modules
    • 5 newsletters and security docs
  •  The Security Awareness Company
    • 1 poster
    • 1 game
    • 9 newsletters and security docs
    • 1 video module

• We've added the ability to add languages to the Microsoft 365 version of the Phish Alert Button. For more information, please see our Adding Languages to the Phish Alert Button article. 
• New items were added to the ModStore:
  • The Security Awareness Company
    • 1 video module
    • 2 newsletters and security docs
  •  Popcorn
    • 1 game
    • 4 training modules
  • El Pescador
    • 1 poster
  • Twist and Shout
    • 12 video modules
    • 6 training modules
  •  KnowBe4
    • 2 training modules
  •  exploqii
    • 3 video modules
• A new placeholder was added: [[knowbe4_domain]]
  • This placeholder populates the KnowBe4 domain. While [[domain]] populates the email recipient's domain, [[knowbe4_domain]] populates the KnowBe4 domain.
  • See our Placeholders article for more information.

• We've updated our Security Culture Survey to include new questions. The survey is also now available in additional languages. For more information on the Security Culture Survey check out our What is the Security Culture Survey (SCS)? article.
• We’ve added the ability to generate a unique entity ID to use when setting up single sign-on (SSO). You may want to use this feature if you have multiple accounts and your Identity Provider is unable to accept the same entity ID for each account. For more information, see the SAML section of our How to Edit Account Settings article. 
• New items were added to the ModStore:
  • Popcorn
    • 1 training module
  •  exploqii
    • 1 video module
  • El Pescador
    • 5 video modules
    • 1 training module
  • The Security Awareness Company
    • 1 video module
    • 2 training modules
    • 5 newsletters and security docs
  • KnowBe4
    • 2 newsletters and security docs
    • 2 training modules
• The Learner Experience (LX) for your users now includes a new Learner Dashboard. Here users will see a summary of their training completion including the training status and due dates. Optionally, you can choose to show the user’s Phishing Test Results, Personal Risk Score, and gamification statistics.
  This new feature is disabled by default, but you can enable it by going to your Account Settings. See this article for more information.
• In the first week of August, you’ll see the following changes to the Users tab:
  • The Users, Groups, Import Users, Active Directory, Merge Users, and Security Roles tabs have been redesigned for better usability.
  • The User and Group tabs have new filtering options, a more streamlined interface, and some text updates including a better format for selecting Smart Group criteria.
  • A User’s Profile is no longer one page, but is now organized into subtabs. This includes a new User Dashboard where you can see an overview of the user’s security awareness training.
  • Click here for more information on these changes.
• To help you troubleshoot issues that may arise when uploading Custom Content, we have created distinct error messages. See this article for more information. 

• We've added a new Phish-Prone Recommended section in the ModStore to include data-driven recommendations that create a more personalized experience. These recommendations are based on your users’ Phishing Test results and are recommended to help improve your results over time. To learn more, check out the How do I navigate the content sections? section of our ModStore article.
• New items were added to the ModStore:
  • exploqii
    • 1 video module
  •  KnowBe4
    • 1 assessment
    • 1 newsletter and security doc
    • 2 training modules
  • The Security Awareness Company
    • 2 training modules
    • 7 newsletters and security docs
  • El Pescador
    • 1 training module
    • 4 posters
    • 6 video modules
• We’ve added a new drop-down option called Font Size to our WYSIWYG editor to allow you to quickly change the size of the font in training notifications, phishing emails, and landing pages. As part of this update, we’ve added two new font options: Impact and Palatino. You can select these options from the Font drop-down menu. For more information on creating phishing emails and landing pages please read our Customizing Emails and Landing Pages article and for information on creating training notifications read our How Do I Edit or Create Training Notifications? article.
• We revamped the design of our classic Oops! and SEI landing pages! This new look is mobile-friendly and is localized in over thirty languages. These new landing pages are available under the Generic and SEI (Platinum/Diamond Only) landing page categories. The new Oops landing page design will be the default for all phishing campaigns but you can still access and use our classic Oops page, which will remain available under the Generic and SEI (Platinum/Diamond Only) landing page categories.
• We have updated the way the Job Function risk score factor is calculated. This could greatly impact your user, group, and organization risk scores. See this article for more information.
• We're making some updates to the USB tab of your KnowBe4 console. You may notice faster speeds, improved functionality, and some minor user interface enhancements.

• The Management Console now offers the ability to create a managed phishing campaign. A managed phishing campaign can be used to create a phishing campaign across multiple accounts. To learn more about this feature, check out our article How to Create a Managed Phishing Campaign.
• We've added the ability to overwrite the return-path header with the reply-to address for reply-to campaigns. This option can be found in your Account Settings. For more information, see our Account Settings article. 
• We've added 6 new entries to our Landing Domains. Customers who require our phish domains, please request an updated list from the support team.
• New items were added to the ModStore:
  • KnowBe4
    • 2 training modules
    • 3 video modules
  • The Security Awareness Company
    • 2 newsletters and security docs available in 18 languages
    • 5 video modules
  •  Popcorn
    • 1 poster
    • 1 newsletter and security doc
    • 1 training module
  •  exploqii
    • 2 video modules

• We’ve added a new option to your Account Settings page under the Phishing section. You can now specify the domain used for the [[domain]] placeholder on phishing templates and landing pages. To learn more, see this article.
• We now support the full UTF-8 character set. You may now use email addresses with UTF-8 characters, including international characters.
• We’ve added a new option to your Account Settings page under the Phishing section. You now have the ability to disable specific attachment attack vectors from being sent out during a phishing campaign. To learn more, see this article.
• We made the following changes to the Training tab and ModStore in the month of May:
  • The Campaigns, Notification Templates, Policies, and Reports tabs have been redesigned for better usability.
    • The graph on a Campaign’s Overview page has changed to include information about the User’s Completion Activity in a monthly format instead of the previous Daily User Completion Activity.
    • You can create a PDF and URL Policy from the Policy dropdown menu. You can also add Policies in multiple languages by clicking the +Add Language button. For more information, click here.
  • The Store Purchases and Uploaded Content tabs have moved to the ModStore. Store Purchases has been renamed to Library and includes new ways to sort and analyze saved content.
    • You can now search your Library using keywords, sort by the content type and/or status, hide content, and remove unused content.
    • For content you have used in a campaign, you can now view a Usage Summary. This summary includes the percentage of completed users, which campaigns contain this content, and how your users rated their experience.
    • Click here for more information on the Library.
  • The My Training tab is retiring. To access your assigned training, click your email in the top right corner and select “My Training”.
    Click here for more information on these changes.
• New items were added to the ModStore:
  • Exploqii
    • 1 video module
  • El Pescador
    • 4 video modules
  • The Security Awareness Company
    • 5 video modules
    • 6 newsletters and security docs
  • KnowBe4
    • 2 newsletters and security docs
    • 2 training modules
    • 6 video modules

• We've updated the Quarterly Product Update video in our Knowledge Base. This video covers new features that have been added to your Security Awareness Training platform over the previous quarter.
• The English - South Africa phishing template category was renamed to English - Africa.
• The new Brandable Content feature is now available in the ModStore. This feature allows you to add a branded theme to an active training campaign with eligible content. To learn more about this feature, see this article.
• New items were added to the ModStore:
  • Twist and Shout
    • 1 video module
  • The Security Awareness Company:
    • 2 newsletters available in 18 languages
    • 2 posters
    • 1 game
    • 2 newsletter and security docs
    • 1 training module
  •  exploqii
    • 1 newsletter and security doc
    • 5 video modules
  •  KnowBe4
    • 2 newsletters and security docs
    • 1 video module 
  •  Popcorn
    • 1 training module
    • 2 newsletters and security docs

• We've updated three of our Free Tools RanSim and the Phishing Security Test to include 3 new simulations for RanSim and a new phishing template based on COVID-19 for the Phishing Security Test.
• We've localized our Learner Experience (LX) into six additional languages. The new languages are:
  • Czech
  • Hindi
  • Indonesian
  • Korean
  • Malay
  • Polish
    To learn more about this feature and see what other languages are available, see this article.
• We've added 4 new Coronavirus-themed vishing templates:
  • Coronavirus Stimulus Package (SSN)
  • Coronavirus Testing Kit (SSN)
  • Coronavirus School Schedule (SSN)
  • Increased Coronavirus Cases in Your Area (Zip Code)
• An entry was added to our Phish Link Domains. Customers who require our phish domains, please request an updated list from the Support team.
• We’ve added a new topic called Working Remotely under Topics > Popular Topics in the ModStore.This new topic filter highlights the training content that will help teach your users how to stay safe online while working from home. Click the ModStore tab now to review what’s available.
• We've updated the interface for our in-platform release notes. These release notes are designed to keep you updated on major features and updates to your platform. For more information on in-platform release notes, check out this article.
• New items were added to the ModStore:
  • KnowBe4
    • 1 training module
    • 1 newsletter and security doc
    • 3 video modules
  •  Popcorn
    • 1 training module
    • 2 newsletters and security docs
    • 2 video modules
  • Twist and Shout
    • 14 video modules
    • 2 posters
  •  Exploqii
    • 2 newsletters and security docs
    • 9 video modules
  • The Security Awareness Company
    • 1 training module
    • 1 newsletter and security doc
    • 6 video modules
  • El Pescador
    • 4 video modules

• Training notifications now include DKIM signatures. Signing domains are:
  • US: training.knowbe4.com
  • EU: eu.knowbe4.com
• We've added the ability to add a DKIM signature to your Phishing emails. You can do this from the Phishing section of your Account Settings page. See this article for more information.
• Our translated and localized phishing template category names were updated to follow this naming convention: Language - Region.
• We've added the following new phishing template categories: 
  • Romanian
  • Swahili
  • Chinese Traditional- Taiwan
• We've updated three of our Free Tools, the Weak Password Test, Breached Password Test, and Password Exposure Test to make some improvements on how the tools run. The new version numbers for the tools are listed as follows:
  • Weak Password Test: version 1.0.0.48
  • Breached Password Test: version 1.0.0.41
  • Password Exposure Test: version 1.0.2.50
• The Security Awareness Training platform now supports self-service SAML. You can enable and set up SAML from your Account Settings page. See this article for more information.
• The industry benchmarking data has been updated on your Dashboard, in Phishing Reports, and in Advanced Reports. Our benchmarking data was gathered from over 4 million users across over 17,000 customers. For more information on our industry benchmarking, please see this article.
• We’ve made updates to the ModStore in your KnowBe4 account. You may notice faster speeds, improved functionality, and major user interface enhancements.
• New items were added to the ModStore:
  • Popcorn
    • 1 video module
  • El Pescador
    • 2 video modules
    • 5 posters
    • 5 newsletters and security docs
  •  KnowBe4
    • 2 newsletters and security docs
    • 16 training modules
  • Twist and Shout
    • 19 video modules
    • 2 posters
  • The Security Awareness Company
    • 3 training modules
    • 3 posters
    • 3 newsletter and security docs
    • 2 newsletters available in 18 languages

• We’re in the process of updating our server-side ADI processing. You will notice increased sync processing speed in the near future. However, there are no functional changes to how users, groups, and memberships are synced.
• We've updated the algorithm behind the Security Culture Survey results to provide you with a more accurate security culture score. For more information about the Security Culture Survey, see this article.
• We've added the ability to download a json formatted text file of all Active Directory sync changes and download errors. You'll find this feature on the Details Page of any selected ADI sync.
• An entry was added to our Phish Link Domains. Customers who require our phish domains, please request an updated list from the Support team.
• We’ve released a new user agreement that requires account admins to accept our standard terms on the KMSAT platform. This is required for legal and compliance purposes. For more information, see our KnowBe4 Privacy Policy and Terms of Service article or visit knowbe4.com/legal.
• We've added the ability to disable password-less logins for administrators on your account. You'll find this feature in your Account Settings. 
• We've upgraded the design of our passwordless login email notifications. We've also revised the sender address from support@knowbe4.com to do-not-reply@knowbe4.com.
• As of January 25th, all Securable.io content will be retired from the ModStore and Securable.io will no longer appear as a publisher.
• We've localized our Learner Experience (LX) into additional languages. These new languages include Hungarian, Dutch, Italian, Norwegian, Russian, and Vietnamese. To learn more about this feature, see this article.
• New items were added to the ModStore:
  • KnowBe4
    • 3 training modules
    • 4 newsletters and security docs
  • The Security Awareness Company:
    • 5 newsletters and security docs
    • 1 training module
    • 1 newsletter available in 17 languages
• In your ADI sync reports area, we've improved reporting accuracy by adding timestamps.

• We've updated our Phishing Security Test CSV downloads to have consistent casing on headers.
• We’re in the process of updating our server-side ADI processing. You will notice increased sync processing speed in the near future. However, there are no functional changes to how users, groups, and memberships are synced.
• We've added the ability for you to be able to choose a language when using the free Phishing Security Test tool. You can now choose from a total of 21 languages. To learn more about this new update, click here.
• We've added the ability to customize and create custom headers for phishing emails. You can check out these new fields under the Phishing Email Header section of your Account Settings. For more information on these settings, click here.
• We've added a new phishing template category: Education.
• We've added the ability to export a CSV of user feedback for the Security Culture Survey (SCS). This option can be found under the Results tab for an SCS campaign. To learn more about the Security Culture Survey (SCS), click here.
• We have added the ability to set the length of time the messages users see when they report an email using Google PAB. You can change the response duration from your Account Settings page under the Phish Alert section. For more information about the Phish Alert Button and its features, please see this article on our Knowledge Base.
• We’ve made updates to the Phishing tab in your KnowBe4 account. You may notice faster speeds, improved functionality, and minor user interface enhancements.
• We've added three new landing pages that feature Clark the Funtime Phisherman, one of our ModStore characters. Check them out under Phishing > Landing Pages:
  • Clark the Funtime Phisherman: Social Engineering Red Flags
  • Clark the Funtime Phisherman: Phish Alert Button (PAB)
  • Clark the Funtime Phisherman: You've Been Phished
• We've added a new landing page category called Interactive. This category includes interactive content in the form of quizzes, puzzles, and drag and drop exercises. Each page is designed to help your users learn about security awareness in a fun way. Check them out under Phishing > Landing Pages > Interactive.
• New items were added to the ModStore:
  • Twist and Shout
    • 7 video modules
    • 1 poster
  •  Syntrio
    • 7 training modules
  •  KnowBe4
    • 1 newsletter
    • 5 training modules
    • 1 assessment available in 34 languages
  • El Pescador
    • 4 video modules
    • 3 posters available in 3 languages
  •  Popcorn
    • 1 game available in 4 languages
    • 2 training modules
    • 2 posters
    • 3 newsletters
  • The Security Awareness Company
    • 1 video module available in 33 languages
    • 1 newsletter available in 34 languages
    • 1 poster available in 34 languages
    • 4 video modules
    • 1 poster available in 8 languages
    • 1 poster
    • 1 training module
    • 1 newsletter available in 16 languages

• We’ve made updates to the Phishing tab in your KnowBe4 account. You may notice faster speeds, improved functionality, and minor user interface enhancements. This change will only affect customers on eu.knowbe4.com.
• We've improved the encoding of phishing links used in our phishing emails to increase the security of these links.
• We've added the ability to use a custom header for training notifications. To learn more, please check out this article.
• We've updated the archive/delete functionality for Groups
  • After archiving a group, that group can now be permanently deleted. Deleted groups cannot be restored.
  • Deleted group names can be reused.
  • We've added the ability to bulk delete groups via CSV
• We've updated our login URLs to no longer include email addresses in an effort to make our URLs more secure. We've updated the Login Link placeholder in our training notifications to reflect this change.
• We've added two new getting started videos for SSO users. Check them out here:
  • Getting Started with KnowBe4 Security Awareness Training for SSO Users
  • Getting Started with Cyber Hero Training for SSO Users
• We've updated the Users tab for the Security Awareness Proficiency Assessment (SAPA). You will now be able to see your users' scores from the table. For more information on SAPA, check out this article.
• The industry benchmarking data has been updated on your Dashboard. Our benchmarking data was gathered from over 16 million users across nearly 28,000 customers. For more information on our industry benchmarking, please see this article.
• New items were added to the ModStore:
  
  • Twist and Shout
    • 21 video modules
    • 3 posters
    • Inside Man Season 1 available in German 
  •  Popcorn
    • 2 newsletters
  • El Pescador
    • 1 video module
    • 2 training modules
  • The Security Awareness Company
    • 1 training module
    • 4 posters
    • 8 newsletters
    • 1 newsletter available in 17 languages

• We have added the ability to set the length of time the messages users see when they report an email using the PAB stays on the screen. You can change the response duration from your Account Settings page under the Phish Alert section. For more information about the Phish Alert Button and its features, please see this article on our Knowledge Base.
• You can now assign assessments to your users. We offer two types of assessments: the Security Awareness Proficiency Assessment (SAPA) and the Security Culture Survey (SCS). Use the SAPA to test your users' knowledge of security knowledge. Use the SCS to survey your users to determine your organization's security culture. For more information, check out these articles on our Knowledge Base.
  • How to Use Assessments
  • What is the Security Awareness Proficiency Assessment (SAPA)?
  • What is the Security Culture Survey (SCS)
• New items were added to the ModStore:
  • Twist and Shout
    • 22 video modules
    • 3 posters
  • El Pescador
    • 3 posters
    • 2 video modules
  • KnowBe4
    • 2 assessments 
  •  Syntrio
    • 6 training modules
  •  Popcorn
    • 1 game
    • 1 poster
    • 2 newsletters
  • The Security Awareness Company
    • 2 training modules
    • 1 newsletter available in 17 languages

• You can now disable the return-path header for training emails from your Account Settings area. You'll want to enable this setting if you are using SPF alignment checks and want to spoof your domain. See more information here.
• We've added a new phishing template category: Indian (English) Phishing Templates.
• We have added the ability to customize the confirmation users see when they click the Phish Alert Button. You can change this message from your Account Settings page under the Phish Alert section. For more information about the Phish Alert Button and its features, please see this article on our Knowledge Base.
• An entry was added to our Phish Link Domains. Customers who require our phish domains, please request an updated list from the Support team.
• We've added a security role for the Uploaded Content tab. Previously, access to the Uploaded Content tab was included in the Training Store Purchases role. We have added this new security role to give you more control over who has access to upload and manage custom content. For more information about this new security role and other security roles, check out this article on our Knowledge Base.
• New items were added to the ModStore:
  • Twist and Shout
    • 7 video modules available in 17 languages
    • 7 posters
  •  KnowBe4
    • 5 video modules
  • El Pescador
    • 3 posters
  • The Security Awareness Company
    • 2 training modules
    • 1 poster available in 17 languages
    • 1 newsletter
  • KnowBe4
    • 10 training modules
  • Popcorn
    • 3 newsletters
    • 9 posters
    • 8 modules 
    • 8 security docs
• We've added a new landing page category: Role-Based. This category focuses on five different roles in an organization (Executive/CEO, Finance, Sales, Human Resources, and IT). Each landing page explains why a specific role is a target, potential attacks, and helpful tips to stay safe online.
• We now have two whitelisting wizards that can help guide you through the whitelisting process. Visit here to learn more about each wizard.
• We've added a new "safelinks" phish domains. If you whitelist our phish domains in your environment, make sure you whitelist the newest domain. If you're unsure which domain is new, contact Support.
• We've added seven new landing pages to our Point of Failure Video Training category. These landing pages are a part of the Cybersecurity Starter Kit video series.
• We recently updated our mail server infrastructure. This improvement may require you to update your current whitelisting setup. Visit our whitelisting guide for more information.

• You can no longer share landing page previews. In order to preview a landing page, you must be logged in to the console. 
• We've updated the drop-down menus throughout the admin console and the learner experience to include new options and icons. You can now click your email in the top-right corner of the console and navigate to your training and PhishER from anywhere within the console.
• We've refined the AI algorithm behind our Virtual Risk Officer (VRO) to lessen a user's Exposure Risk over time. The Exposure Risk factor is increased when user information is found in a data breach. With this update, the Exposure Risk factor will decrease over time for older breaches, while more recent breaches will have a stronger impact on the user's Exposure Risk.
• We've added a new phishing template category: Retired Current Events.
• New items were added to the ModStore:
  • Popcorn
    • 2 security docs
    • 1 training module
  • Teach Privacy
    • 1 training module
  • El Pescador
    • 2 training modules
    • 2 posters
  •  Syntrio
    • 1 training module
  •  KnowBe4
    • 2 training modules 
  • The Security Awareness Company
    • 1 newsletter available in 15 languages
    • 2 security docs
    • 3 posters
• We've added two new landing pages to the Phishing > Landing Pages > Generic category:
  
  • Warning Signs of Phishing (Translatable)
  • 20 Ways to Block Mobile Attacks (Translatable)

• We've added new Google Apps Login landing pages that include multi-factor authentication. Check them out under the Phishing > Landing Pages > Phishing For Sensitive Information category:
  
  • Google Apps Login (Updated)
  • Google MFA (Do Not Edit)
  • Google Apps Login with MFA (Do Not Edit)
• We've renamed our phishing template category "Banking" to "Banking and Finance" to better represent the templates within that category.

• We've added new policy statuses. When creating a policy, there will be a new drop-down field with the following status options: draft, published, or archived
• We've updated the Quarterly Product Update video in our Knowledge Base.
• We've refined the AI algorithm behind our Virtual Risk Officer (VRO). You'll see a slight increase to your users' Risk Scores. The end goal is to increase the stratification between High and Low Risk users to more accurately reflect their risk to your organization.
• New items were added to the ModStore:
  • El Pescador
    • 4 video modules
  •  Exploqii
    • 2 video modules
  • The Security Awareness Company
    
    • 3 security docs
    • 5 training modules
    • 2 posters
  • Syntrio
    • 2 training modules
• Our Reporting APIs have been updated to include user and group risk score information.
  • See more here: KnowBe4 API Documentation
• Two changes have been added to user training sessions:
  • If users open duplicate training windows, only the most recent window will remain active. This will be indicated by a message that says "Your training has been launched in another browser window. This training window will be closed."
  • If users leave their training window unattended for four or more hours, their session will be closed and they will need to re-open their training. This will be indicated by a message that says "Your training session has expired. Please relaunch your training from the KnowBe4 learner experience."
• We added training notification templates with a new design that you can customize for your organization. These templates will have a (Banner) or (Border) tag in the template name.
• A new training notification template category was created: Blank Templates. This category includes blank versions of our training notification templates with styling. To understand how to best use this category, review this article.
• A new "Summer: Don't get burned by the bad guys!" landing page was added. Check it out under the Phishing > Landing Pages > Holiday/Seasonal Landing Pages.
• EZXploit was deprecated from new phishing campaigns. 
• We've localized our Learner Experience (LX). You can now set the language for the LX interface using the language drop-down menu. To learn more about this feature, see this article.

• Sign-ups are now open for our Knowledge Assessment beta! Our Knowledge Assessment allows you to measure your users' understanding of security-related topics so that you can make data-driven decisions about your security awareness plan.
  • Sign up for our beta here
• You can now enable surveys for new or existing training campaigns. Surveys will help you gather feedback from your users about the training content you are assigning them. To learn more about surveys, please read this article on our Knowledge Base.
• You can now use a date range in Smart Groups criteria. For more information, see this section of our How to Use Smart Groups article.
• We changed the word "Cancel" to "Close" on training campaigns.
• We've added three new local vishing numbers for Brazil, Australia, and South Africa. See more here.
• You can now create branded training certificates using the certificate templates we've provided as a starting point (click here to view). This setting is located in your Account Settings. Learn more by reading this article on the knowledge base.
• Replaced the flag icon next to the Start button for a course with a language drop-down menu. Click the arrow next to the selected language to change the language for a course.
• New items were added to the ModStore:
  • KnowBe4
    • 1 video module
    • 2 security docs
    • The Executive Series training modules are now also offered as video modules.
  • The Security Awareness Company
    • 1 newsletter
    • 2 training module
    • 6 security docs
    • 8 posters
    • 3 Security One Sheets
    • 4 games
    • 3 video modules
  • Twist & Shout
    • 1 video module
  • El Pescador
    • 1 video module
    • 1 training module
    • 1 security doc
  • Popcorn
    • 5 security docs
• The User Event API was released and it allows you to import your users' security-related events or training activities from external sources and push them into the console.
  • See more here: KnowBe4 API Documentation

• New items were added to the ModStore:
  • KnowBe4
    • 1 poster
    • 1 security doc
  • The Security Awareness Company
    • 1 newsletter
    • 2 video modules
    • 4 posters
    • 3 security docs
• A new publisher, El Pescador, was added to the ModStore.
• El Pescador
  • 4 video modules
  • 3 posters
• The ability to use a custom icon for the Phish Alert Button was added. For more information, please see this article on our Knowledge Base.
• We've added two new template categories: Current Event of the Week and Current Event of the Month. To understand how to best use these categories, review this article.
• We've added a new Point of Failure Course landing page about phishing and spearphishing. Check it out under your Point of Failure Courses landing page category.
• Three tabs have been added to the Campaigns tab that categorizes Training Campaigns. These tabs are Active, Closed, and All. Use these tabs to choose which campaigns you'd like to view.
• The User Timeline has been changed to the Events Timeline and a new filter has been added that allows you to filter your results. Use the Event Type and Date Range drop-downs to find specific events in your user's history.
• The Learner Experience (LX) now has a View Details option where you can see the course's due date, the time spent on the course, and the date you completed the course for completed courses.
• You now have full control over which AD fields sync to your KnowBe4 console. This feature is optimal for admins wanting to have a mix of AD-managed and non-AD-managed fields, but without the worry of blank fields overwriting existing data during a sync. Learn more about how you can make the most of your AD sync by visiting here.

• In phishing reports, the first names of users with longer names will be truncated. Longer email addresses will also be truncated.
• You now have the ability to set a default landing page and default landing domain under your Account Settings. Your default landing page and domain will be used across all phishing campaigns, unless otherwise specified when creating a campaign or phishing template.
• You can now upload videos as custom courses to your KnowBe4 console. You'll enroll your users and track their progress on your custom courses, just as you would with any content from the ModStore. See here to learn more about uploading custom content.
• New items were added to the ModStore:
  • Syntrio
    • 1 training module
  • KnowBe4
    • 1 security doc available in 32 languages
    • 1 training module
    • Security Doc: 20 Ways to Block Mobile Attacks is now available in 32 languages
    • The 15 minute 2019 Kevin Mitnick Security Awareness Training is now available
    • The 30 minute 2019 Kevin Mitnick Security Awareness Training is now available
    • 1 game
  • Popcorn
    • 8 training modules
  • The Security Awareness Company
    • 1 newsletter
    • The 2019 version of the Danger Zone game is now available.
    • 1 training module
    • The Privacy Basics training module has been translated into 13 additional languages
    • All 12 Cyber Hero Series modules are now available in French and Portuguese.
    • 8 video module
  • Landing Pages:
    • A new landing page category called Hack Attacks (Use With Caution) was added. This category mimics classic and newer ransomware attacks.

• You can now upload your own SCORM-compliant content in any language you choose, directly into your account! You'll enroll your users and track their progress on your custom courses, just as you would with any content from the ModStore. See here to learn more about uploading custom content.
• We’ve added feature enhancements to your training campaigns!  When your users miss their training deadlines, you can now extend the training due date for individual users or allow training assignments to be completed after the due date.  Learn more about modifying your training campaign deadlines here.
• New items were added to the ModStore:
  • Popcorn
    • 9 posters
    • 18 security docs
    • 8 video modules
    • 1 game
  • Security Awareness Company
    
    • 1 newsletter
    • 7 Security One Sheets
  • KnowBe4
    • 1 training module
      • This is our 2019 version of the Kevin Mitnick Security Awareness training module which features increased functionality and accessibility.
    • 5 security docs
    • 9 video modules
  • Twist & Shout
    
    • 13 video modules
    • 13 posters

• New items were added to the ModStore:
  • KnowBe4
    • 1 video module
    • 1 training module
    • 1 poster
    • 1 security doc
  • Exploqii
    • 48 video modules were translated into 11 languages
  • Security Awareness Company
    • 1 newsletter available in three languages
    • 8 Security One Sheets
  • Syntrio
    • 17 training modules
  • Popcorn
    • 4 training modules
• The new learner experience (LX) was enabled.
  • Learn more about our new LX on our Learner Experience Guide, or watch our LX-related videos.
• A new search filter was added to the ModStore: Targeted Traning.
  • You can now easily browse the industry and role-based training content available at your subscription level.
• Phishing Templates:
  • Finnish and Danish templates were added
  • Burmese and South African templates were added

• New items were added to the ModStore:
  • Syntrio **new publisher!**
    • 8 training modules
  • KnowBe4
    • 4 training modules
    • 5 posters
    • 7 video modules
  • Security Awareness Company
    • 3 training modules
    • 1 game
    • 3 Security One Sheets
    • 1 poster
    • 1 newsletter 
    • 1 security doc (Activity Book for kids)
  • Popcorn
    • 1 security doc (Activity Book for kids)
• You now have the ability to clone Security Roles in your KnowBe4 console. See here for more information.
• You can now enable a sneak preview of our new training experience for your users. KnowBe4 is updating its user training interface, or learner experience, for all accounts in early February. This updated interface includes gamification, branding, a tour, and more.
  • See our Learner Experience guide to review all of the changes, and then enable the new learner experience in your Account Settings to try it out!
• Our industry benchmarking numbers on your Dashboard and Reports were updated to include the latest data, as well as new available industries to select from. Learn more on our industry benchmarking article.
• Active Directory Integration (ADI) Version 1.0.16.5 released.
  • This version adds additional sync fields for more user customization.
    
    Note: The <domain>.conf will be updated with the new user fields when the service first runs after installation.
  • Improves ADI logging by now including <domain> in the log.
• The Accounts tab of the Account Management Console was improved. See here for more information.
• A Reports tab was added to the Account Management Console. You can now run reports that provide metrics for your managed accounts from one central location. For more information on the specific reports offered, read our How to Use Account Management Reporting article.

• New items were added to the ModStore:
  • KnowBe4
    • 4 training modules 
  • Popcorn
    • 2 Security Docs
  • exploqii
    • 1 video module
  • Security Awareness Company
    • 1 newsletter
    • 3 Security One sheets
    • 1 poster
    • 4 video modules
• The Reseller Dashboard was renamed to Account Management Dashboard.
• You now have the ability to add your own allowed domains to your KnowBe4 console. See here more information.
• Under Account Settings, the Business hours, Business days, and Time Zone information was moved from the Phishing section to the Company Information section.

• Updated videos for Customizing Phishing Templates and Landing Pages and Customizing Training Notifications were added.
• New items were added to the ModStore:
  • Teach Privacy **new publisher!**
    • 10 training modules
    • 1 game
  • Popcorn
    • 7 posters
    • 5 Security Docs
    • 1 training module
  • KnowBe4
    • 1 poster
    • 1 training module
    • 6 video modules
  • Security Awareness Company
    • 1 newsletter
    • 2 Security Docs
• New placeholders were added to your Placeholder dropdown on phishing templates, landing pages, and training notifications. You can now add dynamic numbers and dates to your custom content.
• A new tag was added to specific email templates: SPF. See more about what this tag means here.
• A new video for Domain Doppelganger was added.
• Training-related certificates have been updated with a new design.
• Teach Privacy was added as a publisher to the ModStore.
• A new version of the Office 365 PAB was released which fixes an issue with centralized deployment. Server-based PABs update automatically. See more on our Phish Alert Release Notes.
• You can now set a required password length for your users from your Account Settings.
• A free KnowBe4 training module and PDF printable has been released, only available for the holiday season (November and December)
  • See more here: Safe Travels for Road Warriors: Holiday Edition
• Added navigation buttons to email template previews for both phishing email templates and training email notifications.

• New items were added to the ModStore:
  • KnowBe4
    • 2 training modules
    • 4 posters
  • exploqii
    • 1 video module
  • Security Awareness Company
    • 5 posters
    • 3 newsletters
  • Popcorn
    • 10 newsletters
    • 3 training modules
  • Twist & Shout
    • 30 pieces of artwork
  • ThinkHR
    • 2 training modules
• A new version of the PAB was released for Office 365 and the Outlook Mobile app.
  • View our Phish Alert Button (PAB) Product Manual to see which PAB installation method is compatible with your organization.
• An option to modify the session timeout for admins and users was added to your Account Settings. If inactive for the specified period of time, the admin or user will be logged out of their account automatically. MSPs/Resellers also have an admin session timeout available.
• Advanced Reporting and Virtual Risk Officer (VRO) was released for US and EU accounts.
  • Advanced Reporting simplifies and expands your ability to create reports about your security awareness training plan progress, while our Virtual Risk Officer (VRO) feature calculates a risk score for users, groups, and your organization as a whole, helping you detect and strengthen the weakest points in your human firewall.
• A new version of Second Chance was released which addresses several bugs.
  • View our Second Chance Release Notes for more information.
• Tutorial videos have been added/revised:
  • User Profile Guide
  • Account Settings Guide
  • Adding/Importing Users
  • Creating Phishing Campaigns
  • RanSim
  • One Minute Baseline (Clicks)
  • One Minute Baseline (Clicks and Data Entry)
  • PAB Office 365 Install
  • PAB Exchange Install
  • One Minute Baseline: Check Your Password (Clicks + Data entry)
  • One Minute Baseline: Change Your Password (Clicks)
• You can now update user time zones in bulk via CSV import.
  • See more here:
    • CSV Import
    • Time Zones
• A new version of ADI was released which adds support for a large number of users. See our ADI release notes for more details.
• You can now filter users into Smart Groups based on specific policies they have or have not been assigned, started, or completed.
• MSP/Resellers: Added the ability to sort columns under the Accounts tab from the Account Management portal.

• Videos are now called "video modules" and can be used as content for training campaigns.
• New tutorial videos are available on our Tutorial Videos page:
  • Automated Security Awareness Program (ASAP)
  • Social Engineering Indicators (SEI)
  • Policy feature overview
  • Advanced Reporting
  • Virtual Risk Officer (VRO)
• The ability to hide a phishing campaign from reports during campaign creation was added.
• The ability to selectively notify admins upon user import via CSV was added.
• Two new attachment types for your simulated phishing tests were added, .docm and .xlsm.
• New landing pages are available:
  • Automatically branded versions of our basic "Oops" and SEI landing pages were added. Look for the tag (Branded).
    • These landing pages use your "Company Logo URL" as indicated in your Account Settings.
• New items were added to the ModStore:
  • Popcorn
    • 1 training module
  • The Security Awareness Company
    • 5 posters
  • KnowBe4
    • 1 training module
• A new version of RanSim is available which adds a crypto-mining simulation scenario. See more in our RanSim product manual.
• New user fields were added that you can add to user profiles, download in CSV reports, and use in Smart Groups, including:
  • Organization
  • Department
  • Risk Booster
  • Language
  • Employee Start Date
  • Archived Date
  • Comment
  • Custom Fields (up to 4)
  • Custom Date (up to 2)
• We've released Domain Doppelgӓnger, a web-based tool that performs searches specific to your organization’s domain and collects data on any potentially harmful or "evil twin" domains that the bad guys have registered with malicious intent.
  • See more here: Domain Doppelgänger Product Manual
• Added a drop-down that allows you to select which columns to hide or show in a phishing report.
• You can now filter ModStore content by Duration.
• The name of the delete user button has been changed from Delete to Archive to more accurately reflect its functionality.
• You can now clone Groups.
• Added the ability to bulk delete users.

• New API endpoints were released to coincide with our new Policy feature.
  • See: KnowBe4 API Reference Guide
• Twist & Shout and Canada Privacy Training were added as publishers to the ModStore.
• New items were added to the ModStore:
  
  • Canada Privacy Training **new publisher!**
    • 1 training module
  • Twist & Shout **new publisher!**
    • 6 video modules
  • KnowBe4
    • 1 training module
  • Popcorn
    • 2 training modules
  • exploqii
    • 1 video
    • 1 video module
• Our training-related placeholders were revised and built-in training notifications were updated to reflect this. The previous versions of the placeholders will still be supported.
• Training reports were revised slightly to coincide with our new Policy feature.
• The ability to include or exclude archived users from phishing reports was added to the Account Settings area.
• The ability to clone a group was added.
• A new version of PAB was released (1.2.30). See our Phish Alert Release Notes for details.
• A content "Duration" search filter was added to the ModStore.
• Advanced Reporting and Virtual Risk Officer (VRO) was released to beta.
  • Advanced Reporting simplifies and expands your ability to create reports about your security awareness training plan progress, while our Virtual Risk Officer (VRO) feature calculates a risk score for users, groups, and your organization as a whole, helping you detect and strengthen the weakest points in your human firewall.
  • You can enable this in your KnowBe4 Account Settings to participate in the beta. Send your feedback, comments, and questions regarding the beta to KnowBe4's support team.
• The ability to bulk delete users via CSV was added. Additionally, the "Delete" button was changed to "Archive" throughout the Users tab to represent its actual functionality.
• Landing Pages:
  
  • A new multi-provider login landing page was added. Check it out under the Phishing > Landing Pages > Phishing for Sensitive Information.
• Phishing Templates:
  • A new Security Hint and Tip was added.
  • Several new Current Events templates were added.
  • German, Malay, Thai, Vietnamese, and South African phishing templates were added.

• New items were added to the ModStore:
  
  • KnowBe4
    • 2 training modules
    • 30 posters in five different sizes
  • Security Awareness Company (SAC)
    • 5 training modules
    • 6 Security One sheets
  • Popcorn
    • 11 training modules (micro-modules)
  • ThinkHR
    • 9 training modules
• We've added a new Policies tab beneath the Training area of your platform.
  • Our Policy feature allows you to store, distribute, and track various policy acknowledgments and agreements required of your employees as part of your security awareness training program.
• We've added Release Notes to your console.
  • These release notes will inform you of any major updates, new features, or changes that have happened since your last login. Dismiss the messages by clicking the "X" icon in the top-right corner of the message.
• Upgrades were made to the design of our phishing test attachments.
  • All attachments now include a link within it, so users can have a "click" failure in addition to an "attachment opened" failure and will be taken to a landing page upon clicking the link. The design was also changed to improve the overall user experience.
• Landing Pages:
  • A new "Robot CAPTCHA" landing page was added. Check it out under the Phishing > Landing Pages > Generic.
  • A new Instagram login landing page was added. Check it out under the Phishing > Landing Pages > Phishing for Sensitive Information.

• New items were added to the ModStore:
  • 24 new Security Docs from Popcorn
    • These are one-page infographics that relate to their corresponding Popcorn training modules.
  • The Privacy Series of training modules (published by Popcorn) now has matching Posters (in 11x17, 18x24, and Digital Signage formats) and Security Docs available.
  • New Posters and Security One Sheets from the Security Awareness Company
  • 2018 Creating Strong Passwords module (in each language) was enhanced to make each version more localized.
• Our landing page interface was redesigned and now includes a Copy URL feature.
• Second Chance is now available on our EU server.
• KnowBe4's default landing domain for both servers has changed.
• New API endpoints for Training-related data were released.
  
  • See: KnowBe4 API Reference Guide
• The ability to change the default Date/Time Format in your console was added. This setting can be edited in your Account Settings area.
• Short demo videos for all of KnowBe4's free tools are now available.
• A new version of Active Directory Integration (ADI) has been released that corrects an uncommon error related to using LDAPS to connect to your Domain Controller. ADI tools that are functioning as normal do not need to be updated to the latest version.

• New modules for Gold, Platinum, and Diamond-level subscriptions were added to the ModStore:
  • PCI Simplified
  • 2018 Common Threats, Part 2 - Kyle's Story
• Enhancements were made to our Security Roles feature, allowing you to further limit permissions to only include specific, "targeted groups". See our How to Use Security Roles manual for more information.
• Banners will be added to new, updated, and soon-to-be-retired content in the ModStore. See here for more information on the "Retiring Soon" banner.
• Employee number option was added to Smart Groups.
• Benchmarking data settings on the Dashboard will be saved whenever changed. The setting is at the account-level, meaning all admins on the account will see the same saved settings.
• If you're using our server-based Phish Alert Button (PAB) with Mac OSX, we recommend upgrading to the latest version of High Sierra (10.13 or newer) if you experience issues. See our PAB compatibility matrix.
• You can now remove failures from your phishing tests. All failure types can be removed from a user's timeline (on their individual profile page) or from within an individual Phishing Campaign's report.
• Changes to the Training Campaign Creation Screen were added:
  • The "Courses" dropdown has been modified to allow sorting by Published date, Duration, and Title.
    • Retired courses will also be hidden by default on this dropdown, but can be displayed if desired.
  • The order of courses can now be changed by dragging and dropping the selected courses in the order they should be prioritized.
• 17 new modules have been added to the ModStore from publisher ThinkHR for Diamond-level subscriptions. These courses cover a variety of topics, including (but not limited to) sexual harassment, bullying, campus security, and diversity.
  • To browse all ThinkHR courses, access the MODSTORE tab from within your console and beneath the Publisher filter, click "ThinkHR".
• 24 new posters by Popcorn have been added to the ModStore for Diamond-level subscriptions. These posters correspond to 24 of the Popcorn Cyber Heroes Series, Security Moments Series, and Something Phishy training modules. The posters are available in 11x17 tabloid, 18x24 large poster, and 16:9 digital signage formats.
• 44 exploqii video modules are now live in the ModStore for Diamond-level subscriptions. These video modules are currently available in English and German. As well, our exploqii video modules have downloadable versions available in MP4 format and can be added to training campaigns.
• A new Phish Alert Button (PAB) training module is available. This module can be assigned to users within training campaigns as part of the process of implementing the PAB in your organization.
  • The module is titled "Using the Phish Alert Button: Report Suspicious Emails" and is available all subscription levels.

• Mailserver Security Assessment (MSA) was released. This tool allows you to test your email security controls and mail server with over 30 different types of email messages. Using this tool will provide you with the knowledge you need to understand the types of emails and email attachments that can reach your end users.
  • See our product manual here: MSA Product Manual
• Modules for Diamond-level subscriptions were added to the ModStore:
  • OWASP Top 10
  • Executive Awareness and Leadership
  • Computer Security & Data Protection
  • Mobile Security Basics
  • End of the Day Security Challenge
  • PCI DSS Retail Store Experience
• A new version of Second Chance was released which adds support for Gmail and Office 365. This new version also includes:
  • A new URL report in the console which lets you see what URLs are triggering Second Chance prompts for your users.
  • The addition of URL unwinding, which decodes shortened or rewritten URLs to display the actual destination of the link that was clicked.
  • The option to specify a Web Proxy during installation.
• Vishing 2.0 was released with support for US and international numbers. There are over 200 built-in templates and 21 different language categories.
• We have modules now available in 20 additional languages in the ModStore for Gold/Platinum/Diamond subscriptions:
  • 2018 CEO Fraud
  • 2018 Ransomware
  • 2018 Safe Web Browsing
• As part of the Popcorn Series "Security Moments", the module Hacking Emotions is now available in the ModStore for Diamond subscriptions.

• Industry benchmarking data was added to KnowBe4's Free Phishing Security Test.
• Popcorn Training was added as a publisher in the ModStore and is available with Diamond-level subscriptions.
• A new version of PAB was released (1.1.17). See our Phish Alert Release Notes for details.
• The EEC Pro has been updated. Customers receiving the previous version of the EEC will now receive the new EEC Pro moving forward. See more here: EEC Pro Product Manual
• The "2018 Mobile Device Security" module is now available in 20 languages (Gold/Platinum/Diamond subscriptions).
• You now have the capability to use our Active Directory Integration (ADI) with Azure Active Directory Domain Services. See our ADI and Azure AD Domain Services article for more information.
• An external (non-KnowBe4) SAML vulnerability was announced and KnowBe4 promptly patched to prevent any issues with this vulnerability.
  • See more information here: Vulnerability Note VU#475445

• An API has been released to allow you to pull user and group data from your console.
  • See more here: API Reference Guide
• Industry benchmarking data was added to the Dashboard of your console. This allows you to compare your security awareness program's results with those in your industry or others.
  • Industry Benchmarking Data
• There has been an update to the whitelisting process for Office 365 mail environments. 
  • If you have whitelisted our mail servers by IP Address, see here.
  • If you have whitelisted our mail servers by email header, see here.

• A video for your end users was released--it explains how to get started with their KnowBe4 training. You can include a link to this video with your training notifications if you'd like to, to help explain the training process.
  • End User Training Video
• Phish Alert Button CSV download is now available on the KnowBe4 console Dashboard and shows the number of simulated vs. non-simulated emails reported.
• New Facebook, Office 365, and Netflix Landing Pages were added to System Landing Pages.
• Enhancements were made to all tabs that display email templates. This includes:
  • The My Templates, System Templates, and Community Templates tabs under the Phishing portion of the console
  • The My Templates and System Templates tabs under the Training portion of the console
    • Check out this quick video explaining the changes.
• AwareGO was added as a publisher in the ModStore and is available with Diamond-level subscriptions.
• The "2018 Creating Strong Passwords" module is now available in 20 additional languages (Gold/Platinum/Diamond subscriptions).
• A new version of PAB was released (1.1.16). See Phish Alert Release Notes for details.
• A reporting API for Phishing data was released and allows customers to pull Phishing data from their consoles. For more information, see the links below:
  
  • KnowBe4 API Manual
• A new category of "Security Hints & Tips" templates was added to System Phishing Templates which automatically include your organization logo. Look for the (Branded) tag on the category.
• The MSP/Reseller Console's Dashboard page was updated to include more information, including subscription level and end date, number of active accounts, number of purchased seats, and number of active seats (paid/free/trial).

• Security Roles feature release
• New customers with Diamond-level subscriptions will not have any training content automatically added to their accounts.
  • You can select the content suitable for your organization, from the ModStore. Learn more here.
• Second Chance feature release
  • You can enable Second Chance in your existing KnowBe4 account by updating your Account Settings.
• Additions to Training Campaign "Users" page, including the date the user was enrolled, how much time is left for each user, and if the user acknowledged any policy assigned to a training module in a particular campaign.
• Check out this quick video explaining the changes.
• You can now see the length of available videos in the ModStore.

• Securable.io was added to our list of publishers within the ModStore.

• Smart Groups feature release
• Active Directory Integration (ADI) Version 1.0.11.0 released
  • This version adds support for synchronizing group membership using a user's primary group. There is no need to upgrade functioning ADI deployments to this new version.
• Update to Free Phishing Test version 2.0 (additional template and landing page options offered) on EU server

• Active Directory Integration (ADI) Version 1.0.10.0 released
  • Addresses an issue with group synchronization when using userPrincipalName as the email address. If you are not experiencing issues with your ADI services, there is no need to upgrade your ADI version.
• Phish Alert Button (PAB) Version 1.1.11 released
  • Addresses rare scenario where the Outlook Ribbon was disappearing.  If you are experiencing this issue please see our Phish Alert Button (PAB) Release Notes. If you are not experiencing issues there's no need to update.

• MSP/Resellers: Ability to import and export Phishing Templates, Landing Pages, and Training Notifications is now available when logging into accounts via your Reseller console.
• We've updated our training notification placeholders to be functional in manager and admin templates. The following placeholders: [[email]], [[first_name]], [[last_name]], and [[display_name]] were updated and can be used in notifications directed towards managers and admins.
• Improvements were made to the User List and Group Member List interfaces. You can now sort all columns, show/hide specific columns, and increase/decrease the number of entries per page.
• Enhancements made to the Phish Alert Button. You can now set up multiple Phish Alert Button instances for your organization, allowing greater PAB customization.

• Automated Security Awareness Program (ASAP) feature release
• Active Directory Integration (ADI) Version 1.0.9.0 released
  • Addresses a crashing issue with the ADI service when an Active Directory has missing email address information. If you are not experiencing issues with your ADI services, there is no need to upgrade your ADI version.

• Password-less logins feature released
• Anonymous console data feature released
• Enhancements to training campaigns and notifications
  
  • You can now notify users, user managers, and admins with a variety of notification types
  • Additional manual notifications added
  • Ability to dynamically create training notifications while in training campaign creation screen was added
  • Training Notification categories are displayed under template selection drop-down

• Weak Password Test feature released
• Location field was added to CSV downloads

• Reply-to is off by default on Phishing Campaign
• SSO links are now available in your Account Settings
• Ability to clone campaigns was added
• My Purchased Items will show the most current items at the top
• Added Sender's Name for Training Notification templates

• Updates and improvements to Training Campaign Creation Screen
  • Ability to add/remove users from groups once they complete training
  • Ability to create campaigns with a "relative duration"
• An entry was removed from our Phish Link Domains. Customers who require our phish domains, please request an updated list from the Support team
• Added HTML Attachment and HTML Attachment with Link available attack vectors on Phishing Template Creation screen
• Subscription level details are now shown under your Account Settings
• CSV download improvements

• Update to Free Phishing Test (additional template and landing page options offered) on US server
• Release of Free USB Test
• Language filter available in ModStore

• Release of the ModStore and Diamond-level service subscription
• Release of Social Engineering Indicators (SEI)

• New users added to your KnowBe4 console will inherit account time zone
• Ability for users to change what language their course is in