Frequently asked
questions

Phished Academy is available in over 25 languages, including British English, American English, Dutch, Flemish, French, German, Spanish, Italian, Polish, Portuguese, Brazilian, Czech, Japanese, Turkish, Catalan, Chinese, Finnish, Danish, Norwegian, Swedish, Arabic, …  All content is professionally proofread and verified by local native-speaking teams to ensure clarity, cultural relevance, and accuracy.

The Phished Academy follows a science-based curriculum, where employees earn certificates at various milestones—from Bronze to Platinum. These certificates reflect their level of cyber resilience and encourage continuous development of their cybersecurity skills.

More specifically, the Bronze Certificate represents foundational knowledge of cyber resilience, while the Silver Certificate marks advanced understanding. The Gold and Platinum Certificates indicate expert-level cyber resilience, achieved through continued engagement and in-depth training. In addition to these levels, participants can earn specialized certificates for Gold and Platinum Certificates focused topics such as AI Essentials, NIS2, NIST, GDPR, ISO/IEC 27001, ISO/IEC 27701, SOC 2, ICDL, DIGCOMP, PCI DSS, IBP FO, PII, TISAX, DORA, and HIPAA. These certifications allow users to deepen their expertise in line with their role, sector, or regulatory environment.

Unlike traditional cyber awareness platforms that overwhelm users with endless content libraries, Phished Academy takes a structured and engaging approach. Our gamification strategy includes interactive training sessions with short videos, storytelling, quizzes, and certification tests. Employees can earn certificates ranging from Bronze to Platinum. 

This achievement-driven model taps into users’ intrinsic motivation by making learning feel rewarding and competitive. The short, consistent sessions keep employees actively involved without overwhelming them, while repeated exposure reinforces long-term knowledge retention. In other words, gamification at Phished isn’t just for fun—it’s a proven way to turn awareness into lasting behavioral change. 

The Phished Academy offers a structured learning path built around short, engaging sessions. Each level—ranging from Bronze to Platinum—contains 10 to 15 sessions, each taking approximately 5 to 10 minutes to complete. These sessions combine interactive questions, storytelling and videos to ensure users stay engaged throughout the learning process. Employees are notified whenever a new session becomes available, and smart platform settings help prevent users from simply clicking through without actively participating.

In addition to these core sessions, the Academy includes two additional training formats: Threat Alerts and Cyber Hygiene Practices. Threat Alerts are short, timely articles that inform users of emerging cyber threats and the latest cybergang tactics, often with checkboxes at the end to reinforce key takeaways. Cyber Hygiene Practices are concise 1-minute videos that teach users how to secure their commonly used apps and devices. Users can select their most-used apps and devices.

One-off training or phishing simulations alone are simply not enough to make employees truly cyber resilient. That’s why investing in frequent security awareness training is essential. Phished focuses on behavioral change rather than mere awareness—and that’s only achievable through a holistic approach. Such a holistic approach includes realistic phishing simulations, combined with frequent, short training sessions, timely threat alerts, and actionable cyber hygiene practices to help employees secure the apps and devices they use every day.

Behavioral change only happens when all of these elements are not only present, but also relevant, realistic, and engaging. Phished ensures this by tailoring the phishing simulations to the context, skills, and language of each individual user. Training sessions are short, focused, and cover all relevant topics in a structured way. Threat alerts are timely and aligned with current risks, and cyber hygiene advice is adapted to the employee’s sector and digital environment.

 Read more: The Secret to not Getting Phished? Stop Relying on Just Phishing Simulations