KnowBe4 Finds Employee Distraction as Top Cybersecurity Risk

Findings from KnowBe4's survey conducted with security professionals at Infosecurity Europe 2025 highlighted the critical role of human risk management in enhancing cyber resilience.

KnowBe4 released a report titled Navigating Cyber Threats: Infosecurity Europe 2025 Findings, which revealed that distraction emerged as a primary factor compromising cybersecurity. The research surveyed over 100 security professionals to assess current cybersecurity concerns.

The report identified distraction (43%) and lack of security awareness training (41%) as leading reasons employees are vulnerable to cyberattacks, overshadowing technical attack sophistication. Phishing continued to be the dominant threat, affecting 74% of respondents, with impersonation tactics being the most common. Furthermore, while 65% of organizations planned to increase cybersecurity budgets, perceived effectiveness gaps emerged concerning AI-based tools.

Concerns over the rise of AI-generated threats were prevalent, with 60% of organizations anticipating this shift. The report also noted a disparity between nearly 90% of respondents expressing confidence in their cyberattack response capabilities and the frequency of breaches.

Javvad Malik, lead cybersecurity awareness advocate at KnowBe4, stated, “Cyber risk is not just about advanced technology; it is about human bandwidth and the cognitive load of today's fast-paced digital workplace.” The report concludes by offering recommendations to help organizations improve their security postures.

Organizations are encouraged to adopt human risk management strategies to better navigate the evolving landscape of cyber threats.