Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Human Risk Management Blog

Keeping you informed. Keeping you aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Roger Grimes

Roger Grimes

Data-Driven Defense Evangelist

Roger A. Grimes, CISO Advisor for KnowBe4, Inc., is the author of 15 books and over 1500 articles, specializing in host security and preventing hacker and malware attacks. Roger is a frequent speaker at national computer security conferences and his presentations are fast-paced and filled with useful facts and recommendations.
Request This Speaker

Webinars

Videos and Vlogs

Podcasts

Books

Whitepapers

Articles

Recent Posts

Jan 25, 2023 4:03:39 PM By Roger Grimes

How Does Quantum Impact Passwords?

Yeah, quantum computers are likely to be able to crack passwords from every angle.

Jan 17, 2023 8:15:27 AM By Roger Grimes

Is Your Organization’s Password Complexity Requirement Strong Enough? Probably Not

Is your organization’s password complexity strong enough?

Jan 10, 2023 4:43:49 PM By Roger Grimes

Password Managers Can Be Hacked Lots of Ways and Yes, You Should Still Use Them

The recent hack (at least 7th) of the LastPass password manager has lots of people wondering if they should use a password manager.

Dec 28, 2022 2:27:36 PM By Roger Grimes

[Heads Up] Giant LastPass Breach Can Supercharge Spear Phishing Attacks

By Roger A. Grimes. KnowBe4 recommends that everyone use a password manager to create and use strong passwords as a part of their password policy ...

Dec 21, 2022 9:25:23 AM By Roger Grimes

Ivanti Report Shows Cybersecurity Practitioners Concentrating on Right Threats

A recent Ivanti report shows cybersecurity practitioners getting more focused on the threat landscape, but defenders may need to hone their attention to focus on the right threats.

Dec 13, 2022 8:54:06 AM By Roger Grimes

CISA Phishing Infographic Contains a Lot of Good Information

On December 8th, the Cybersecurity & Infrastructure Security Agency (CISA) released a great phishing infographic about data collected, lessons learned and recommendations learned from ...

Nov 30, 2022 10:04:25 AM By Roger Grimes

[Keep An Eye Out] Beware of New Holiday Gift Card Scams

Every holiday season brings on an increase in gift card scams. Most people love to buy and use gift cards. They are convenient, easy to buy, easy to use, easy to gift, usually allow the ...

Nov 9, 2022 4:39:12 PM By Roger Grimes

Here Is What You Can Do To Inspect SMS URL Links Before Clicking

Phishing via Short Message Service (SMS) texts, what is known as smishing, is becoming increasingly common (some examples are shown below). There is probably not a person on Earth who ...

Nov 8, 2022 10:00:35 AM By Roger Grimes

PhishER Turns Golden Hour Into Golden Minute

Hospital emergency rooms around the world are fine-tuned to meet the requirements of the “Golden Hour”. The Golden Hour is a well-accepted medical fact that critically injured or ill ...

Nov 4, 2022 10:14:34 AM By Roger Grimes

Number Matching Push-Based MFA Is Only Half the Solution

When push-based multifactor authentication (MFA) first came out, I was a big fan. I promoted it as a strong and safe MFA option in my book, Hacking Multifactor Authentication. That was ...

Oct 26, 2022 10:58:37 AM By Roger Grimes

Passkeys Are Being Pushed in a Big Way

There is a good chance that you and nearly everyone else will be using passkeys in the near future.

Oct 17, 2022 4:01:57 PM By Roger Grimes

How To Stop Job Scams

I am reading and hearing about a ton of job scams these days. So many, I wondered how anyone could get a real job or employee, especially in these days of often full-time, work-from-home ...

Oct 11, 2022 12:59:34 PM By Roger Grimes

Could 100% of Phishing Be Eliminated One Day?

Occasionally you will hear people or organizations claiming that they are on the verge of eliminating all social engineering from reaching end-users. Could it be true? Could it happen one ...

Sep 21, 2022 9:25:43 AM By Roger Grimes

Do Not Use Easily Phishable MFA and That Is Most MFA!

Everyone should use multifactor authentication (MFA), where they can, to protect valuable information. Everyone!

Aug 31, 2022 9:54:49 AM By Roger Grimes

So, Your MFA is Phishable, What To Do Next

We’ve written a lot about multi-factor authentication (MFA) not being the Holy Grail to prevent phishing attacks, including here:

Aug 24, 2022 8:25:03 AM By Roger Grimes

Teach Two Things to Decrease Phishing Attack Success

We know everyone is busy. Everyone already has too much on their plate and is trying to learn as much as they can every day.

Aug 16, 2022 3:42:05 PM By Roger Grimes

More Super Targeted Spear Phishing Ahead

Hardly a day goes by without a news alert about the latest HUGE data breach. It’s so commonplace today that it rarely rates showing at the top of the news. In a newspaper, the ...

Jul 28, 2022 12:33:33 PM By Roger Grimes

Beware of Sophisticated Malicious USB Keys

Malicious USB keys have always been a problem. There is almost no professional penetration testing team that does not drop a handful of USB keys outside of any targeted organization and ...

Jul 21, 2022 1:39:43 PM By Roger Grimes

[Eye Opener] Both Job Seekers and Employers Should Be Aware Of New Sophisticated Scams

With record low unemployment, a tight labor market, and increasing customer demand, everyone says it is an employee’s job market out there. But it is getting tougher to get a real job and ...

Jul 14, 2022 3:57:18 PM By Roger Grimes

Hovering Over Links Will Protect You More Than MFA

Microsoft Security recently released a report which detailed a widely successful phishing attack technique used against over 10,000 of its customers…a phishing attack that worked even if ...

Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest insights, trends and security news. Subscribe to CyberheistNews.