Employees last quarter were most likely to click on phishing emails masquerading as internal HR or IT communications—accounting for 42.5% and 21.5% of failures in KnowBe4 simulations, respectively—and nearly all of the top 10 most-clicked phishing templates had internal themes, often using familiar subject lines like “Time Off Request” or “Performance Review” . That makes polymorphic, HR-themed phishing especially dangerous, as it exploits employee trust and internal urgency.
emailSONAR isn’t just for individuals—it’s perfect for small businesses, too. Whether you’re a solopreneur or a tight-knit team, emailSONAR arms you with plain‑English risk reports and automated protection to stop internal‑looking scam emails in their tracks—no fancy setup needed.