Redflags

Redflags by ThinkCyber is the only truly real-time security awareness platform, applying Nobel Prize-winning "Nudge Theory" by behavioral economist Richard Thaler to deliver contextual security interventions at the exact moment of risk. Founded in 2016 by Dr. Mike Butler and Tim Ward, former global heads of Information Security and IT from BAE Systems' cyber arm, the platform transforms traditional after-the-fact training into proactive behavioral guidance. Rather than annual eLearning or punitive phishing simulations, Redflags intervenes when users attempt risky actions—clicking suspicious links, entering passwords after phishing, copying files to USB drives, or using weak passwords—with gentle, educational nudges that guide safer behaviors without interrupting workflow.

The platform operates through multiple mechanisms: desktop micro-messages drip-feeding brief security content to maintain continuous awareness; real-time contextual nudges triggered by specific risky behaviors detected at the endpoint level; application-specific reminders (such as phishing warnings in Outlook); and campaign-based behavior change initiatives targeting specific organizational risks. Proven metrics across clients include 89% engagement rates, 73.4% reduction in Outlook link clicks, 59% decrease in password entries after suspicious link clicks, and 93% reduction in files copied to removable drives. Individual clients report even stronger results: Gamma achieved 93.7% reduction in removable disk usage, a defense firm saw 79% fewer risky Outlook interactions, and a logistics company achieved 74% safer Wi-Fi connection behaviors.

Serving customers including Dr. Martens, Unilever, Tesco Bank, Welsh Water, NHS trusts, and Critical National Infrastructure organizations, Redflags has raised £3.6M total funding (£3M late seed March 2024 led by Fuel Ventures). The platform is NCSC Assured Training certified, available in 13 languages, and has won multiple awards including TEISS Awards 2024 Best Cyber Security Training/Awareness, TechRound100 2024, and techUK Cyber Innovator 2021. The solution treats employees as the first line of defense rather than the weakest link, creating lasting cultural change through behavioral science.