惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

The Cloudflare Blog
U
Unit 42
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
腾讯CDC
罗磊的独立博客
博客园 - 聂微东
博客园_首页
雷峰网
雷峰网
云风的 BLOG
云风的 BLOG
Jina AI
Jina AI
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
D
DataBreaches.Net
The GitHub Blog
The GitHub Blog
人人都是产品经理
人人都是产品经理
Y
Y Combinator Blog
量子位
Microsoft Azure Blog
Microsoft Azure Blog
阮一峰的网络日志
阮一峰的网络日志
小众软件
小众软件
月光博客
月光博客
T
The Exploit Database - CXSecurity.com
Google DeepMind News
Google DeepMind News
H
Help Net Security
O
OpenAI News
Blog — PlanetScale
Blog — PlanetScale
S
Security Affairs
S
Security @ Cisco Blogs
Microsoft Security Blog
Microsoft Security Blog
T
The Blog of Author Tim Ferriss
AI
AI
MongoDB | Blog
MongoDB | Blog
G
Google Developers Blog
MyScale Blog
MyScale Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
D
Docker
Hugging Face - Blog
Hugging Face - Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
S
Schneier on Security
Cloudbric
Cloudbric
H
Heimdal Security Blog
J
Java Code Geeks
N
News and Events Feed by Topic
Hacker News - Newest:
Hacker News - Newest: "LLM"
宝玉的分享
宝玉的分享
有赞技术团队
有赞技术团队
S
SegmentFault 最新的问题
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
爱范儿
爱范儿
I
Intezer
GbyAI
GbyAI

Human Risk Management Blog

Trust, Verify, Protect: Modernizing Email Security for the Cloud Report: Social Engineering Remains a Central Part of AI-assisted Attacks ClickFix Social Engineering is Now the Leading Malware Delivery Method CyberheistNews Vol 16 #28 Your 2026 Phishing by Industry Benchmarks: The Findings on Human Risk Scammers Can Use AI Tools to Pinpoint Your Location Based on a Photo Report: Attackers Are Using AI to Automate Social Engineering Your KnowBe4 Fresh Compliance Plus Content Updates from June 2026 From Awareness to Digital Workforce Security Your KnowBe4 Fresh Content Updates from June 2026 Threat Actor Uses Phishing to Breach Orgs for Ransomware Gangs Invoice Phishing Attacks Are Abusing the Shop App Phishing Campaign Impersonates Interpol to Deliver Ransomware Prompt Injection and the Rise of Agentic Risk Hyper-Targeted Social Engineering Needs Real-Time Video Response Your Email is Protected. Is Your Teams Chat? CyberheistNews Vol 16 #27 [HOW TO] Your Cybersecurity Starts at Home on World Social Media Day 2026 Phishing by Industry Benchmarking Report: Findings on Human Risk Static DLP Is Leaving You in the Dark: Why It’s Time for Intelligent, Self-Serve Outbound DLP and Misdirected Content Analysis INC Ransomware Gang Targets the Legal Sector 5 Essential Cybersecurity Defenses for Cloud Email Security Cybercriminals Are Targeting the FIFA World Cup 2026 Why Bite-Sized Security Awareness Training Matters in an Age of TikTok and Digital Distraction Happy 3rd Birthday to Our KnowBe4 Community! Phishing Exposes Employee Data at 86% of Fortune 100 Companies Shadow AI Is Not Shadow IT With a Better Marketing Budget CyberheistNews Vol 16 #26 A New Extortion Scam Uses IT Impersonation to Breach Organizations Cybersecurity Starts At Home This World Social Media Day FTC Report: Americans Lost $3.5 Billion to Imposter Scams Last Year Report: Device Code Phishing is Surging Report: Online Shoppers Increasingly Ignore Scam Warning Signs Security Training Needs Google Maps, Not Christopher Columbus Turn Account Takeover Into Real-Time Security Coaching Extortion Gang Sends In-Person Attackers to Exfiltrate Data Attackers aren’t loyal to any collaboration channel CyberheistNews Vol 16 #25 [The AI Tell] How To Expose Machine-Written Phishing Fast Social Engineering Attacks Abuse Workplace Collaboration Tools New Extortion Brand Uses IT Impersonation to Breach Organizations APWG Report: Social Media Phishing is Surging Cybersecurity Awareness Training for AI: Key Focus Areas Americans Lost $900 Million to AI-Powered Scams Last Year What AI Can’t Hide When It Writes a Phishing Email Your AI Agents Are Eager to Please And Easy to Exploit From 1% to 26%: How AIDA Orchestration Fixes the Remedial Training Gap Best AI Agent Security Tools for SMB and Enterprise in 2026 4 Hot Summer Travel Tips To Avoid Scams CyberheistNews Vol 16 #24 [FBI Alert] Lock Down Your Microsoft 365 Device Code Flows Now A Credit Score for Cyber Behavior Agentic AI Security in 2026: What to Know How to Secure AI Agents: 4 Best Practices An Overview of Email Compliance Regulations and Reporting Report: AI-Assisted Fraud is Surging Attackers Use Spoofed ChatGPT Site to Deliver Malware I Love Device-Bound Session Credentials, But They Are Still Phishable and Hackable Nearly Two-Thirds of CEOs Cite Cyberattacks as Their Top Concern A Look at Spam vs. Phishing: 4 Key Differences KnowBe4 Wins Multiple 2026 TrustRadius Top Rated Awards Cyber Insurance for Mid‑Market Organizations in Southeast Asia KnowBe4 Earns Multiple 2026 Buyer's Choice Awards from TrustRadius The New Frontier: Securing Japan’s Hybrid Digital Workforce (2026 & Beyond) CyberheistNews Vol 16 #23 Now Phishing Attacks Use Real Hotel Reservations to Target Travelers Report: AI-Enabled Social Engineering Attacks Are on the Rise Your KnowBe4 Fresh Compliance Plus Content Updates from May 2026 FBI: Kali365 Phishing Kit is Targeting Microsoft 365 Accounts KB4-CON - AI Is Everything How to Secure AI Adoption In Your Organization Your KnowBe4 Fresh Content Updates from May 2026 The Silent Invitation: A Deep Dive into Calendar Invite Phishing Cyber Insurance for Mid‑Market Organizations in Southeast Asia Chinese-Language Phishing Kits Are Growing More Advanced Phishing Attacks Are Using Real Hotel Reservation Info to Target Travelers Warning: Scammers are Exploiting Geopolitical Unrest Athletes Are Increasingly Targeted by Social Engineering Attacks AI Agent Governance Part 3 - Runtime Governance: The Hidden Performance Cost of Agentic AI AI Agent Governance Part 2 - What Good Looks Like: Governing AI Agents in Practice 8 Ways to Reduce False Positives in Email Security Ransomware Attacks Drive a Surge in Cyber Insurance Claims My Favorite 5 KnowBe4 Agents Perry Carpenter KB4-CON 2026 Q&A: Deepfakes & Deception Free Gift Fallacy: How Attackers Harvest Credit Cards via Fake Surveys When Global Conflict Becomes a Cyber Weapon: How Iran Tensions and Other Stressful Events Fuel Social Engineering Attacks CyberheistNews Vol 16 #21 [Heads Up] GitHub Breach Shows Developer Tools Are Social Engineering Targets Alert: Extortion Groups Are Using Phishing Kits to Automate Their Attacks Beyond the Chatbot: Why Your AI Agents are Your Newest (and Most Vulnerable) Colleagues Report: Adversarial Use of AI is Evolving
The Role of Agentic AI in Phishing Security Training
KnowBe4 Team · 2026-06-16 · via Human Risk Management Blog

Phishing attacks are evolving faster than traditional training programs can keep up. Advances in AI — including generative tools — are making attacks more dynamic, personalized, and harder to detect.

At the same time, agentic AI for phishing security training is reshaping how programs improve, enabling them to adapt to user behavior and shifting risk in real time.

To stay effective, phishing training needs to reflect how users interact with email and AI tools in their day-to-day work and adjust alongside those behaviors.

Key Takeaways

  • Agentic AI enables phishing training to adapt in real time based on user behavior, risk signals, and evolving threats.
  • Traditional, static training programs struggle to keep pace with AI-driven phishing tactics and changing user workflows.
  • Reducing friction requires automation, targeted reinforcement, and timely guidance embedded in everyday work.
  • Effective programs pair personalization with visibility, governance, and measurable outcomes.
  • Connecting phishing training to broader human and AI activity helps strengthen long-term risk reduction.

An AI agent is a system that can take actions, make decisions, and respond to inputs based on context rather than following a fixed set of instructions. Unlike traditional automation, which executes predefined tasks, AI agents can adapt their behavior as conditions change.

Agentic AI builds on this by coordinating multiple agents to work toward a shared goal. In phishing security training, this allows programs to move beyond scheduled campaigns and static content. Instead, training can adapt simulations, reinforcement, and guidance in response to real user interactions and emerging threats.

Agentic AI vs. Traditional AI: The Shift From Static Training to Adaptive Learning

Traditional AI supports narrow, predefined tasks, while agentic AI can adapt, make decisions, and respond dynamically based on goals and context. In phishing security training, this shifts programs from static, scheduled activities to systems that adjust based on how users interact with risk.

In practice, traditional systems follow fixed rules: assigning the same modules, running scheduled simulations, and requiring manual updates to stay relevant. Agentic AI takes a different approach by continuously analyzing user behavior, simulation outcomes, and emerging threat patterns to refine training in real time.

This allows phishing training to:

  • Respond to real risk signals instead of fixed schedules
  • Adapt content and difficulty based on user performance
  • Deliver guidance that reflects how users interact with threats

As a result, training moves beyond one-size-fits-all assignments and becomes more targeted to how risk actually appears across the workforce.

How Can Agentic AI Reduce Friction in Security Awareness Programs?

Security awareness programs create friction when they interrupt workflows or require too much manual oversight. Agentic AI helps reduce that friction by:

  • Reducing administrative burden for security teams
  • Moving beyond one-size-fits-all training campaigns
  • Adjusting training more efficiently as phishing tactics change

Reducing Administrative Burden for Security Teams

Security teams often spend significant time managing training logistics: reviewing results, assigning follow-up, and adjusting simulations.

Agentic AI reduces that overhead by automating key tasks like:

  • Identifying which users need additional support
  • Updating simulations and training assignments
  • Highlighting where intervention is required

This frees up security teams to focus on higher-risk activity instead of daily program management, while maintaining consistent oversight as AI use expands.

Moving Beyond One-Size-Fits-All Training Campaigns

Broad training campaigns often miss how risk varies across user behavior, role exposure, and AI usage. Two employees in the same role may respond very differently to phishing attempts depending on how they interact with email, handle requests, or rely on AI tools.

Agentic AI tailors simulations and follow-up based on those individual patterns. For example, a user who frequently clicks on urgent payment requests can receive targeted scenarios and guidance focused on recognizing pressure tactics and verifying requests. By aligning training with how risk appears in real interactions, programs become more relevant and easier to apply in day-to-day work.

Adjusting Training More Efficiently as Phishing Tactics Change

Phishing tactics are evolving quickly, with 86% of phishing attacks now driven by AI. As a result, attacks are more realistic, scalable, and harder to detect.

Training needs to evolve at the same pace. Agentic AI enables continuous updates by analyzing new attack patterns and user interactions, then using those signals to refresh simulations and trigger reinforcement where it’s needed. This keeps programs aligned with current threats without relying on manual revisions.

Best Practices for Using Agentic AI in Phishing Security Training

Agentic AI can make phishing training more adaptive, but personalization alone is not enough. Effective programs also require visibility into user behavior, timely guidance, and clear guardrails to ensure training reinforces safer decisions.

In practice, solutions should:

  • Keep human judgment at the center of phishing defense
  • Use real-time intervention to turn risky moments into learning
  • Build training around better visibility into agent activity
  • Align personalization with measurable risk reduction
  • Support adaptive training with governance that can scale

Keep Human Judgment at the Center of Phishing Defense

AI should strengthen human decision-making, not replace it.

Effective programs pair automation with context. Instead of only flagging or blocking actions, they explain why something is risky — helping users understand signals like unexpected requests, unusual timing, or AI-generated content that appears credible but contains subtle inconsistencies. Over time, this builds judgment that extends beyond training scenarios.

Use Real-Time Intervention to Turn Risky Moments Into Learning

Training and delayed feedback delivered after the fact is easy to ignore or forget.

Real-time intervention ties learning directly to the moment of risk. When an issue occurs, immediate guidance explains what triggered it and how to respond differently next time. This reinforces better decisions and helps prevent repeat mistakes.

Build Training Around Better Visibility Into Agent Activity

AI agents aren’t just being used in security training — they’re increasingly embedded across everyday workflows. Yet security teams often lack visibility into how those agents are being used, especially when they interact with sensitive data or external communication.

Solutions like KnowBe4’s Agent Risk Manager (ARM) help address this by monitoring how AI agents are used across the enterprise and surfacing where risk is introduced. These insights allow teams to connect agent activity to specific behaviors, so training can focus on the workflows and decisions where exposure is highest.

Align Personalization With Measurable Risk Reduction

Personalization should produce measurable outcomes, such as:

  • Reduced repeat failure rates in phishing simulations
  • Increased reporting rates for suspicious emails
  • Faster response times between receiving and reporting potential threats

Linking training to these metrics ensures customization drives meaningful change, not just content variation.

Support Adaptive Training With Governance That Can Scale

With AI use expanding across the workforce, training must be supported by governance that can scale with it.

Structured controls for AI usage like policy enforcement, centralized visibility, and consistent guardrails help ensure security training aligns with evolving risk and user behavior. KnowBe4’s ARM extends this by enabling real-time oversight of AI agents, helping organizations guide behavior at scale while maintaining control.

What Challenges Can Agentic AI Help Address in Phishing Training?

Many organizations struggle to keep phishing training relevant and effective as threat tactics evolve. Agentic AI helps address key challenges, including:

  • Low engagement with generic security awareness content
  • Limited capacity to continuously refine training programs
  • Difficulty identifying which users need additional support
  • Gaps between phishing simulation results and follow-up actions
  • Slow response to changing phishing tactics
  • Limited visibility into AI-related user risk

Low Engagement With Generic Security Awareness Content

Generic training often feels disconnected from daily work. A quarterly module on phishing basics won’t resonate with someone reviewing invoices or using AI to draft emails under time pressure.

Engagement improves when training reflects those realities. Simulations should mirror payment requests, document shares, or AI-generated messages, so lessons feel familiar and are easier to remember and apply.

Limited Capacity to Continuously Refine Training Programs

Keeping programs current requires ongoing updates, but most teams don’t have time to revisit them regularly.

Agentic AI enables continuous improvement by evolving alongside user activity. Content updates reflect emerging attack patterns, while reinforcement is triggered where it’s needed most — reducing manual effort without sacrificing relevance.

Difficulty Identifying Which Users Need Additional Support

Phishing risk varies across users, but traditional training provides limited visibility into those differences. Simulation results may show who failed, but they don’t always reveal patterns in behavior or how exposure changes across roles and workflows.

Behavioral signals like repeated failures, delayed reporting, or risky interactions with AI tools help close that gap. Organizations can then target reinforcement more precisely instead of relying on broad, uniform training.

Gaps Between Phishing Simulation Results and Follow-Up Actions

Simulation results can surface issues without prompting meaningful action. For example, failures are recorded but follow-up is delayed or too generic to change behavior.

Agentic AI helps align outcomes with response by enabling timely, targeted coaching. When follow-up is immediate and tied to the specific action, like clicking a link or trusting an AI-generated message, users can connect the mistake to a clear next step and adjust their behavior.

Slow Response to Changing Phishing Tactics

Phishing tactics are evolving more quickly as AI enables attackers to generate and test message variations at scale. Tools like generative AI allow attackers to rapidly refine email language, making tactics harder to anticipate and easier to iterate on.

As those tactics shift, training can quickly fall out of sync. Agentic AI helps close that gap by detecting emerging patterns in both threats and user behavior, then adjusting simulations and follow-up to reflect those changes. This ensures training stays relevant to what users are encountering in their day-to-day work.

Limited Visibility Into AI-Related User Risk

AI tools are now part of everyday work, but organizations often lack visibility into how they’re being used. Risk can come from entering sensitive data into prompts, relying on inaccurate outputs, or using unsanctioned AI tools without oversight.

Agentic AI helps surface those signals and tie them to targeted coaching and awareness efforts, giving security teams a clearer view of risk across both human and AI-driven actions.

How KnowBe4’s AIDA Supports More Adaptive Phishing Training

Agentic AI is already being applied to phishing training through systems like KnowBe4’s Artificial Intelligence Defense Agents (AIDA). It enables training to adapt continuously based on user activity and evolving risk signals. This includes:

  • Personalizing training based on user behavior and risk
  • Creating phishing simulations that reflect current attack patterns
  • Reinforcing learning with timely, targeted follow-up
  • Connecting phishing training to broader human and AI risk

Personalizing Training Based on User Behavior and Risk

AIDA adjusts training based on how users interact with risk. For example, someone who frequently handles external payment requests may receive different simulations than a user working primarily internally.

Patterns such as repeated clicks or missed reports can trigger more targeted scenarios and reinforcement, so training is shaped by how risk appears for each user.

Creating Phishing Simulations That Better Reflect Real-World Attack Patterns

KnowBe4’s AIDA uses agents like the Phishing Agent, Template Generation Agent, and Callback Template Generation Agent to generate simulations that reflect current attack patterns. These agents help create realistic email scenarios, adapt templates based on evolving tactics, and simulate follow-up interactions that mirror how attacks unfold.

As a result, simulations can reflect document-sharing alerts or internal communications users encounter in their daily work. More realistic scenarios give users practice against emerging threats and make follow-up coaching more relevant.

Reinforcing Learning With Timely, Targeted Follow-Up

AIDA reinforces learning by tying follow-up directly to user behavior and phishing outcomes. Follow-up can include remedial training, knowledge refreshers, or policy-based reinforcement aligned to individual risk and timing.

By connecting feedback to specific actions, organizations can help users correct behavior in the moment — improving proficiency over time rather than simply blocking errors.

Connecting Phishing Training to Broader Human and AI Risk

Phishing risk doesn’t exist in isolation. The same behaviors that lead someone to click a suspicious link can also show up in how they use AI tools, such as trusting generated content without verification or entering sensitive information into prompts.

AIDA brings these behaviors into a shared view of user activity, allowing training to address patterns of risk across both phishing and AI use. This helps organizations reinforce better decision-making across the full scope of user activity, not just email.

Strengthen Phishing Security Training With Adaptive AI Support

Agentic AI makes phishing training more adaptive, personalized, and sustainable by connecting user behavior, guidance, and measurable outcomes.

As organizations support a growing workforce of humans and AI agents, phishing training must extend beyond email to include AI usage as part of a broader human risk management strategy. The goal isn’t just to block risky actions, but to improve how decisions are made over time.

See how KnowBe4 AIDA helps organizations strengthen phishing security training with AI-powered support that improves personalization, reinforcement, and human-driven risk reduction.

Agentic AI in Phishing FAQs

Can agentic AI personalize phishing security training for different users?

Yes. Agentic AI can tailor training based on how individuals interact with simulations, email, and AI tools. Users who show higher risk, such as repeated clicks or missed reports, can receive more targeted scenarios and reinforcement aligned to their specific exposure.

What role does human risk management play in AI-supported phishing training?

Human risk management helps connect user behavior, training outcomes, and risk signals into a unified view. This ensures that AI-supported training reflects real patterns of exposure and leads to measurable improvements in decision-making.

How does agentic AI for phishing training adapt to changes in user behavior over time?

Training evolves as behavior changes. Patterns like improved reporting, repeated mistakes, or new risk signals influence how simulations and follow-up are adjusted, keeping reinforcement aligned with current user activity.

How can agentic AI help security teams deliver more relevant phishing simulations?

By analyzing current threat patterns and user behavior, agentic AI can generate simulations that better reflect real-world attacks and scenarios users are more likely to encounter.

Can agentic AI improve phishing reporting behavior, not just simulation performance?

Yes. Timely, contextual feedback helps reinforce what to report and why it matters. Over time, this builds stronger reporting habits and improves how users respond to suspicious activity, not just how they perform in simulations.