Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Human Risk Management Blog

Keeping you informed. Keeping you aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Roger Grimes

Roger Grimes

Data-Driven Defense Evangelist

Roger A. Grimes, CISO Advisor for KnowBe4, Inc., is the author of 15 books and over 1500 articles, specializing in host security and preventing hacker and malware attacks. Roger is a frequent speaker at national computer security conferences and his presentations are fast-paced and filled with useful facts and recommendations.
Request This Speaker

Webinars

Videos and Vlogs

Podcasts

Books

Whitepapers

Articles

Recent Posts

Nov 19, 2025 9:00:04 AM By Roger Grimes

How KnowBe4 Uses AI Efficiently to Get the Best Results

Using the right tool for the job is always better. Anyone who does DIY projects around the home knows how using the right tool can dramatically make the job you are doing far easier. Use ...

Nov 6, 2025 3:00:00 PM By Roger Grimes

Microsoft Help Desk Phishing Attempt

I received this email the other day to my personal email account. It is a “Security Alert” from “Microsoft Helpdesk.” Oh, my!

Nov 5, 2025 9:30:00 AM By Roger Grimes

The Rapid Advancement of Malicious AI Is Changing Cyberdefense Forevermore

AI maturation is leading to more malicious hacking attacks.

Oct 31, 2025 2:30:00 PM By Roger Grimes

UN Convention Against Cybercrime Is a Huge Win!

One of the biggest reasons why cybercrime is so bad — and is increasing each year —is that so much of it is committed by foreign nationals who are not physically located in the country ...

Oct 28, 2025 3:30:00 PM By Roger Grimes

Is It Or Is It Not an HP Scam?

These days it can be hard to tell if something is or isn’t a scam.

Oct 27, 2025 9:30:00 AM By Roger Grimes

[Cyber Security Awareness Month] Doppelgänger Promotes Incident Hiding: Why Saying Something When You See Something Is So Important

It can happen to the best of us. This story happened a decade ago, when I was working at a Fortune 10 company. “Smartest” is subjective, but most of my former coworkers and external ...

Oct 16, 2025 1:30:01 PM By Roger Grimes

We Need to Teach Our AIs to Securely Code

I have been writing about the need to better train our programmers in secure coding practices for decades, most recently here and here.

Oct 9, 2025 5:30:00 PM By Roger Grimes

If You Have Not Realized It, Vishing Is Really Taking Off

Fighting voice-based phishing needs to be a big part of your human risk management (HRM) plan.

Sep 15, 2025 10:00:00 AM By Roger Grimes

Training AI Agents Will Be Status Quo

Protecting humans means protecting the tools humans use.

Sep 11, 2025 2:30:00 PM By Roger Grimes

PayPal Scam From PayPal

One of the most common human risk management recommendations is for users to hover over URL links of unexpected messages to see if the involved DNS domain is legitimate or not for the ...

Sep 5, 2025 1:30:00 PM By Roger Grimes

Advanced Educational Competition – Ask Your Employees To Submit Their Best Phishing

I occasionally get human risk management (HRM) administrators asking me to help them with ideas of “contests” to better educate their end-users.

Sep 4, 2025 2:00:00 PM By Roger Grimes

A Warrant Is Out for Your Arrest

A super common voice phone call phishing scam (i.e., vishing) is when the scammer calls you and pretends to be a law enforcement official with a warrant for your arrest for not answering ...

Aug 29, 2025 10:00:00 AM By Roger Grimes

One of the Biggest Mysteries in Cybersecurity: Why Don’t We Demand This?

“The problem is much, much worse than most people acknowledge.” One of the biggest enduring mysteries for me in cybersecurity is why most cybersecurity curricula don’t teach secure coding ...

Aug 15, 2025 3:45:00 PM By Roger Grimes

Beyond the Inbox: How Old-School Mail Scams Are Still Stealing Your Money

In a world so full of digital online scams, it’s hard to remember that scammers abuse our postal mailing systems as well.

Aug 7, 2025 9:00:00 AM By Roger Grimes

Anatomy of a Vishing Scam

I hear about a ton of similar-sounding scam calls, where the scammer is pretending to be from a service you use (or used), offering you a substantial monthly discount (30% or more) if you ...

Aug 5, 2025 1:30:00 PM By Roger Grimes

ClickFix Social Engineering is Becoming More Popular

ClickFix attacks have been around for decades; only the name is new.

Aug 4, 2025 12:00:00 PM By Roger Grimes

If You Think Social Engineering Is Bad, It’s Going To Get Worse

There is no other way to say it clearer, social engineering is going to be a lot, lot worse soon and far more successful than it is today. And that’s saying a lot. It’s already pretty bad.

Jul 31, 2025 10:00:00 AM By Roger Grimes

Malicious Connectors Potentially Impact Hundreds of Millions of Microsoft 365 Users

Most Microsoft 365 users aren’t aware of this recently growing serious email threat vector.

Jul 22, 2025 5:00:00 PM By Roger Grimes

Ransomware Trends in 2025

I’ve been following ransomware since the first one, the AIDS Cop Trojan, was released in December 1989.

Jul 17, 2025 9:30:00 AM By Roger Grimes

The Attack On Browser-Based AI Agents Is Coming

We are working tirelessly on our AI First strategy to better protect both humans and their AI tools.

Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest insights, trends and security news. Subscribe to CyberheistNews.