Why PhishTested
Schools are doing important work teaching kids about online safety. We built PhishTested to add to that β at home, on your own timeline, with content that updates as fast as the scams do.
Corporate America has been training its employees for years. Everyone else has been left out.
If you work at a company of any meaningful size, you've almost certainly been through phishing training β the quarterly modules, the simulated phishing emails from IT, the friendly nudge when you click on one you shouldn't have.
Studies show this kind of training reduces susceptibility to phishing by up to
86%
So here's the question that started PhishTested: what about everyone else? Your 14-year-old getting their first phone has never seen a phishing simulation. Your 78-year-old mother, who gets three scam calls a week, has never been trained on what to listen for. They're left to learn the same lessons the hard way β often after they've already lost money or compromised an account. That's the gap PhishTested exists to fill: the same structured, scenario-based training corporate employees get, built for families instead of workforces.
The math of institutional timing
The average school district reviews its digital citizenship curriculum every three to five years. Materials get vetted by committees, approved through proper channels, paid for through annual budget cycles, and rolled out across grades after teacher training. That process exists for good reasons β it ensures quality, consistency, and accountability.
Scam patterns, on the other hand, evolve in months. Sometimes weeks. A new AI voice-cloning tool drops in March; by July, it's being used to call teenagers pretending to be their friend in trouble. By the time that scam is well-documented enough to make it into a curriculum, it's already been replaced by the next one.
This isn't a failure. It's the speed of light for institutions.
It just means the gap has to be closed somewhere. And the most natural place to close it is at home, in conversation between a parent and a kid, with material that can update as fast as the threat landscape does.
Schools are doing more than they get credit for
Worth saying clearly: schools are not the problem here.
If you've talked to your kid's teacher about digital citizenship, you've probably heard about real, thoughtful work β lessons on kindness online, recognizing cyberbullying, protecting personal information, thinking critically about what they see on social media. Most middle schools cover this. Many do it well. The teachers leading these conversations genuinely care about the kids in their classroom.
That foundation matters, and PhishTested isn't here to replace it. We're here to add to it β specifically the part that institutions of any kind, schools included, can't realistically keep up with: the constantly shifting tactics scammers use this month. Schools handle the foundation. Parents can handle the updates.
What schools cover vs. what kids encounter today
A typical middle-school digital citizenship unit covers fundamentals like protecting personal information, recognizing cyberbullying, thinking critically about online content, and reporting suspicious messages to a trusted adult. That foundation is genuinely valuable.
Here's what's also out there in 2026, much of which simply hasn't reached most curricula yet:
- β’ AI voice-cloned calls pretending to be a friend in trouble, asking for emergency money
- β’ Deepfake video scams on TikTok and Instagram impersonating influencers offering "exclusive" investment opportunities
- β’ Discord token theft disguised as Nitro gifts from "friends"
- β’ Romance scams that build for weeks before asking for money or crypto
- β’ Fake job listings on Indeed and LinkedIn that target first-time workers with "verification fees"
- β’ Crypto rug pulls and fake giveaways promoted through compromised influencer accounts
- β’ Gaming marketplace scams on Steam, Roblox, and Fortnite trading platforms
- β’ Spoofed login pages for Snapchat, Instagram, and Discord that harvest credentials
These will likely make their way into curricula eventually. They probably should. But "eventually" is a few years out, and your kid is online today.
Who this is for
Parents of teens 13β18. You're the first generation of parents whose kids are growing up with social media, gaming platforms, and AI-generated content all at once. You don't need to become a cybersecurity expert. You just need a way to walk through real scenarios with your kid, see where their instincts are sharp and where they're not, and have a few honest conversations as new threats emerge.
Adults caring for aging parents. The same institutional-gap argument applies on the other end of the age spectrum. AARP, Senior Centers, and local agencies do real work warning seniors about scams β but the warnings often arrive after the scam has already cost someone in their community. PhishTested gives you a way to walk through current scam patterns with your mom or dad on your own timeline, without waiting for the next community newsletter.
What taking this on yourself actually looks like
You don't have to set up a curriculum or carve out hours every week. The realistic version:
- An hour every month or two. A quiz session at the kitchen table or over the phone with a parent. A short conversation about what they got wrong and why it almost worked. A heads-up when a new scam pattern emerges in their world.
- Specific, not abstract. "Be careful online" doesn't teach anything. Walking through this specific message, what's wrong with it, and why it almost worked teaches something they'll remember the next time it shows up in their inbox.
- Age-matched. A 16-year-old needs to know about crypto scams and fake job postings. A 13-year-old needs to know about gaming-marketplace fraud. A 78-year-old needs to know about Medicare scams and fake tech support calls. One-size-fits-all content misses everyone.
- With a clear signal. Our Parent Readiness Dashboard gives you something most digital safety tools don't: a real, per-topic readiness score, so you know whether your kid is ready for the next privilege β a phone, a social account, an in-game purchase budget β rather than just guessing.
What you'll get with PhishTested
A subscription includes interactive quiz scenarios across phishing emails, social media scams, gaming fraud, phone safety, urgency traps, deepfake scams, and more β written separately for teens and adults so the content matches the reader. New scenarios are added as new scam patterns emerge, so the material stays current. Family plans cover up to six people, so the same subscription protects your kids and your parents.
What we're not saying
- We're not saying schools are failing. They're not β most are doing meaningful work with the time and resources they have.
- We're not saying your kid is in immediate danger or that you need to lock everything down.
- We're saying: there's a structural gap between institutional speed and the speed of online threats. That gap isn't going away. Parents who recognize it early and take a small, manageable piece of online safety education on themselves end up with kids who are better prepared β without anyone having to wait for a system to catch up.