Realistic, customer-specific simulations

Nimblr runs simulated phishing emails and smishing (SMS) attacks that mirror real attacker tactics. Simulations use realistic sender profiles, local context, and up-to-date threat intelligence so your team sees the scams they’re actually likely to get.

To make the simulations more realistic, they are customized using customer-specific data entered by the administrator, such as the name of the CFO, the customer's own logo or information about the software used in the business.

The simulated attacks are selected based on the user's history. For example, users with a history of difficulty identifying fake senders receive more simulations of this type. While other users, such as those who find it difficult to resist clicking gift card and reward offers, receive more simulations in this category. 

‍‍

Nimblr Instant Learning

Each simulated attack is linked to a customized reminder for those users who are tricked into clicking the link, or opening the attachment, in a simulated attack. The reminder is called Nimblr Instant Learning and displays the message that tricked the user, along with interactive tips on what to do differently next time. Along with the specific tips, the user is also offered to start an optional basic training module tied to the current simulation.

Monitoring current phishing and smishing trends

The simulated attacks are generated and sent automatically to all active users in the Nimblr security awareness program. 

Nimblr monitors current phishing and smishing trends and ongoing attacks to quickly create new simulations and train users before they are exposed to the real attacks.

 

What's in it for you?

nimblr-micro-training

Micro training

Nimblr’s Micro Training is automatically adapted to the customer’s own environment. The training modules are based on the micro-learning concept and are always concise and relevant.
Illustration of a pirate flag symbolizing Nimblr simulated cyber attacks.

Simulated attacks

Nimblr's simulated attacks are an important part of the training program and are based on thousands of current threats analyzed, processed and disarmed by Nimblr experts.
Nimblr illustration of a thunderbolt.

Instant learning

Courses are offered in 30+ languages and are connected to common activities and real-world IT threats. If someone clicks on a Nimblr simulation they get a short training module in the moment. No extra logins needed.
Illustration for Nimblr's zero-day classes featuring a warning sign.

Zero-Day Classes

Nimblr Zero-Day Classes use real-life attacks and examples to help users recognize current threats. These courses automatically update with regionally significant risks, addressing immediate threats by targeting critical knowledge gaps.
 
Samishing---9-September-2025-13.59 (1) (1)

Smishing simulation add-on

Text messages are sent to users to test their vigilance against mobile-based social engineering attacks. This simulation module reduces the risk of a breach originating from personal mobile devices.
Illustration in Nimblr style of an arrow pointing upward.

Automated reporting

The unique Awareness Level provides a clear picture of your organization's current and historical security awareness. Our customer portal also provides full insight into all training moments, updates, and news for your organization. 

Examples of simulated attacks

The simulated attacks are an important part of Nimblr Security Awareness and consist of both customised and generic simulations of phishing, fraud, malware and many other types of IT-related threats.

Microsoft Office 365

Simulated phishing that claims that the user needs to sign in to Microsoft Office 365 and verify their inbox. In real life, attacks of this type are used to get hold of the user’s log-in details.

To optimise learning, many training sessions are linked to everyday activities and are often initiated through a simulated attack. With Nimblr Instant Learning, users who are fooled by a simulated attack receive immediate feedback and concrete tips on how to avoid similar attacks in the future.

Screenshot of Microsoft 365 phishing simulation.

From the user’s own organisation

Simulated attack pretending to come from someone in your organisation. The data is taken from the organisation's Nimblr configuration. In reality, this type of attack has been used to infect organisations with ransomware.

Screenshot of Phishing Simulation that seems to be sent from within the users own organisation.

Smishing simulation add-on

A simulated phishing SMS that mimics real-world tactics deployed by scammers. This helps build security awareness and demonstrates the importance of taking care when interacting with text messages. 

Image (1)

Get a personalized demo session at your convenience.

Book a demo meeting and let one of our experts walk you through Nimblr solution, the platform, and how quickly you can get started.

Book a demo

Find us

‍Nimblr AB‍
Monbijougatan 17C
211 53 Malmö
Sweden

Nimblr Denmark
Hirsemarken
3520 Farum
Denmark

Nimblr Finland
Erottajankatu 2
00120 Helsinki
Finland

Nimblr Norway
Edvard Storms gate 2
0166 Oslo
Norway

Southern Europe
Rua Febo Moniz 27B
1150-152 Lisboa
Portugal

Nimblr Vietnam
36 P. Hoàng Cầu
Đống Đa
Vietnam

© 2025 Nimblr AB

Cloud-based IT security training for businesses and organizations. Intuitive solutions based on accumulated knowledge from the IT industry, e-learning, pedagogy and web development.