KnowBe4 Blog

Keeping you informed. Keeping you aware.
Stay on top of the latest in human and agent security including social and prompt engineering, ransomware and phishing attacks.

ClickFix Social Engineering is Now the Leading Malware Delivery Method

The ClickFix social engineering technique is now the top malware delivery method, according to a new report from ReliaQuest. These attacks trick users into copying a malicious command, ...

Scammers Can Use AI Tools to Pinpoint Your Location Based on a Photo

Scammers can use AI tools to find your location in photos you post to social media, according to researchers at McAfee. This information can then be used in targeted social engineering ...

Report: Attackers Are Using AI to Automate Social Engineering

Threat actors continue to use AI tools to automate their attack flows and increase efficiency, according to researchers at ReliaQuest.

Your KnowBe4 Fresh Compliance Plus Content Updates from June 2026

Fran Roberts - Studios General Manager, KnowBe4 This is my first message to you as KnowBe4's new Studios General Manager, and I am excited to introduce myself. Drawing on over two decades ...

From Awareness to Digital Workforce Security

Security must evolve from a static training program into dynamic, AI-powered human and AI risk orchestration embedded across the organization.

Your KnowBe4 Fresh Content Updates from June 2026

Fran Roberts - Studios General Manager, KnowBe4 I am thrilled to be writing my first message to you as KnowBe4's new Studios General Manager. I joined KnowBe4 because I believe that one ...

Threat Actor Uses Phishing to Breach Orgs for Ransomware Gangs

An initial access broker associated with the Payouts King ransomware group is using Microsoft Teams phishing to deploy a malicious Microsoft Edge web browser extension, according to ...

Invoice Phishing Attacks Are Abusing the Shop App

Threat actors are abusing Shop, a legitimate app developed by Shopify, to launch phishing attacks, according to researchers at Gen Digital. Shop is used for making purchases and tracking ...

Phishing Campaign Impersonates Interpol to Deliver Ransomware

A phishing campaign is targeting small businesses across Europe, Asia, the Middle East, and the United States with emails that impersonate Interpol’s cybercrime investigation unit, ...

Prompt Injection and the Rise of Agentic Risk

Boxers will often say, the punches that hurt the most aren’t the ones which are thrown with the most force, but the ones they didn’t see coming. I think the same is true in cybersecurity. ...