Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Perry Carpenter

Recent Posts

Deal or No Deal: The Double-edged Sword of the IT Security Bundle

The concept of “bundling” has become very popular among large IT vendors over the past decade as it promises a number of benefits. 
Continue Reading

[ALERT] Time to Truly Reckon with the Dark Reality of Ransomware’s Critical Costs

By now, I’m sure you’ve already been inundated with all the news about the US’s largest gasoline pipeline being shut down and restarted because of a ransomware attack. As reported by the ...
Continue Reading

Key Findings From the 2021 SANS Security Awareness Report

Like most security professionals, there are a few industry reports that I really look forward to reading each year. Pretty high on that list is the SANS Security Awareness report. SANS ...
Continue Reading

NIST Updates You Should Be Aware About

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer. If you’ve been in IT or infosec for any length of time, you’ve probably heard of NIST (the National Institute of ...
Continue Reading

Learn to Combat These Three Cybersecurity Monsters This Halloween and Beyond

It’s that time of year again. The air feels a bit crisper; the days are a bit shorter; and children around the world prepare to go trick or treating. Even as an adult, Halloween is ...
Continue Reading

Here's Your Guide for Combating the Global Disinformation Pandemic

Let’s face it – we’re facing a global pandemic; and it goes beyond Covid 19. There’s a war on truth and it’s being waged by nation states, political groups, and cybercriminals who want to ...
Continue Reading

Wake-up Call: New Study from PWC Exposes Terrifying End-User Security Practices that will Keep Your CISO Up at Night

I just finished reading PwC’s latest Workforce Pulse Study – and you should be scared. This study of more than 1,100 American workers provides an in-depth look at the ...
Continue Reading

Testing 1… 2… 3…

Let’s face it, very few organizations thought they’d still be in workforce limbo as we near the six-month mark of the pandemic. This situation has stretched many organizations to adopt ...
Continue Reading

The Dilemma: Should you phish test during the COVID-19 pandemic?

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer. There’s no question, these are challenging times. Employees and organizations around the world are doing their best to ...
Continue Reading

New KnowBe4 Benchmarking Report Finds 37.9% of Untrained End Users Will Fail a Phishing Test

The 2020 Phishing By Industry Benchmarking Report compiles results from the third annual study by KnowBe4 and reveals at-risk users across 19 industries that are susceptible to phishing ...
Continue Reading

Is There Still Hope for Privacy?

January 28 is Data Privacy Day. In honor of that, I’d like to share some random thoughts on privacy that I put together for a recent webcast with StaySafeOnline.org. And when I say, ...
Continue Reading

5 Things You May Not Know About Security Awareness Training

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer.  Let me open by making an observation: the discipline of security awareness training is chock-full of assumptions and ...
Continue Reading

Shooting Ourselves in the Foot: The Biases We All Have

We humans like to believe that we are rational beings, fully in control of our decisions and actions. But psychologists and behavioral economists disagree. They argue that we are — by ...
Continue Reading

Click Confessions of a Security Expert

As a “human security” expert, I used to take a lot of pride in my well-honed security hygiene. Yeah… that all ended back in early 2017 when I joined KnowBe4. You see, up until that time, ...
Continue Reading

A Transformational Rant: Why People Question the Value of Security Awareness

In my last post, I spent a bit of time discussing the “technology vs. training” debate; and based on the feedback received, I can tell that this is a debate that many of you have had to ...
Continue Reading

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

One of the greatest inventions in modern history is the Reese’s Peanut Butter Cup. I feel sorry for any human who existed before the “age of the cup” because they never got to know the ...
Continue Reading

The Fundamental Importance of Choice and Variety in Security Awareness Program Content

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer. I’m a bit of an oddball when it comes to the security awareness market in that I’ve seen it from virtually every ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews