Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Agentic AI Ransomware Is On Its Way

May 16, 2025 2:08:42 PM By Roger Grimes
Agentic AI-enabled ransomware is not here yet, but likely will be very soon. I am talking this year or by 2026.
Continue Reading

Email-based Attacks Accounted for Most Cyber Insurance Claims Last Year

May 16, 2025 2:08:30 PM By KnowBe4 Team
Business email compromise (BEC) attacks and funds transfer fraud (FTF) accounted for 60% of cyber insurance claims in 2024, according to a new report from Coalition.
Continue Reading

KnowBe4 Leads the Charge Against Cybersecurity Threats with Unmatched AI Capabilities

May 16, 2025 9:30:00 AM By KnowBe4 Team
When it comes to artificial intelligence (AI) and human risk management (HRM), not all AI is created equal.
Continue Reading

How to Protect Your Business from Scattered Spider's Latest Attack Methods

May 13, 2025 3:32:36 PM By KnowBe4 Team
Mandiant warns that the Scattered Spider cybercriminal group is using “brazen” social engineering attacks to target large enterprise organizations in a wide range of sectors.
Continue Reading

The Clock Is Ticking: Why Phishing Remains The Fastest-Moving Cyber Threat in 2025

May 13, 2025 3:32:19 PM By KnowBe4 Team
Cybersecurity professionals face an increasingly aggressive phishing threat landscape, and the 2025 KnowBe4 Phishing By Industry Benchmarking Report makes one thing crystal clear: ...
Continue Reading

CyberheistNews Vol 15 #19 [Heads Up] Talos Report Shows Phishing Attacks Surged in Q1 2025

May 13, 2025 9:05:11 AM By Stu Sjouwerman
Continue Reading

Cybercriminals Use Telegram Bots to Exfiltrate Data In Phishing Kit Campaign

May 12, 2025 4:02:03 PM By KnowBe4 Threat Lab
KnowBe4 ThreatLabs has identified and analyzed a sophisticated cross-platform phishing campaign that utilizes Telegram as its primary exfiltration channel. The campaign uses a combination ...
Continue Reading

You Are Still Vulnerable to Password Attacks When Using Passkeys

May 9, 2025 2:26:01 PM By Roger Grimes
Just because you’re using a passkey doesn’t mean your password is gone.
Continue Reading

Phishing Kits Are Growing More Sophisticated; Focused on Bypassing MFA

May 8, 2025 5:12:21 PM By KnowBe4 Team
Researchers at Cisco Talos warn that major phishing kits continue to incorporate features that allow them to bypass multi-factor authentication (MFA).
Continue Reading

Talos Report: Phishing Attacks Surged in Q1 2025

May 7, 2025 2:09:19 PM By Cindy Zhou
Phishing was the initial access vector in 50% of attacks during the first quarter of 2025, according to a new report from Cisco Talos.
Continue Reading

Warning: Phishing Campaign Impersonates the US Social Security Administration

May 7, 2025 2:08:58 PM By Cindy Zhou
Researchers at Malwarebytes warn that phishing emails are impersonating the US Social Security Administration (SSA) to trick users into installing the ScreenConnect remote access tool.
Continue Reading

CyberheistNews Vol 15 #18 [Eye Opener] Sneaky New Attack. What is Device Code Phishing?

May 6, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from April 2025

May 5, 2025 9:00:00 AM By Stu Sjouwerman
Check out the April updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Your KnowBe4 Fresh Content Updates from April 2025

May 2, 2025 9:00:00 AM By Stu Sjouwerman
Check out the 21 new pieces of training content added in April, alongside the always fresh content update highlights, new features and events.
Continue Reading

Exciting Leadership Updates at KnowBe4

May 1, 2025 5:05:57 PM By Stu Sjouwerman
To our valued KnowBe4 customers, partners, and community. I wanted to share some exciting developments happening at KnowBe4.
Continue Reading

Xfinity Scam Might Explain Similar Scams

May 1, 2025 4:30:01 PM By Roger Grimes
Recently, I covered a T-Mobile scam where a friend of mine narrowly avoided losing money. In that scam, the attackers called up pretending to be from T-Mobile offering him a ...
Continue Reading

Email Remains the Top Attack Vector for Cyberattacks

May 1, 2025 4:29:20 PM By Stu Sjouwerman
Email is still the most common attack vector for cyber threats, according to a new report from Barracuda.
Continue Reading

Hundreds of Fortune 500 companies have hired North Korean operatives.

May 1, 2025 1:54:27 PM By Stu Sjouwerman
Cyberwire wrote: "WIRED has published a report on North Korea's efforts to obtain remote IT positions at foreign companies, noting that these fraudulent workers are now using AI tools to ...
Continue Reading

Cybercriminals Impersonate DHS Amid Deportation Efforts

Apr 30, 2025 4:42:18 PM By Stu Sjouwerman
Researchers at INKY warn that criminals are impersonating the US Department of Homeland Security to launch phishing scams.
Continue Reading

A Sneaky T-Mobile Scam and Lessons That Were Learned

Apr 30, 2025 4:41:50 PM By Roger Grimes
A friend of mine got a call on his phone and he regrettably picked it up. The number was 267-332-3644. The area code is from Bucks County, PA, where he used to live many years ago.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews