Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

The Most Commonly Spoofed Business-Related Applications in a Phishing Campaign

Mar 15, 2021 7:12:32 AM By Stu Sjouwerman
Business-related applications like Zoom, Microsoft, and DocuSign are the most commonly spoofed services in phishing attacks, according to a new report from GreatHorn. Business apps made ...
Continue Reading

Microsoft Exchange Server hacks ‘doubling’ every two hours | ZDNet

Mar 12, 2021 9:18:55 AM By Stu Sjouwerman
Cyberattackers are taking full advantage of slow patch or mitigation processes on Microsoft Exchange Server with attack rates doubling every few hours. According to Check Point Research ...
Continue Reading

[Security Alert Webinar] The Microsoft Exchange Mass Hack Is a Huge Security Risk For All Organizations and What You Can Do About It

Mar 11, 2021 3:52:43 PM By Stu Sjouwerman
On March 2, Microsoft released emergency security updates to plug multiple zero-day security holes in Exchange Server versions 2010 through 2019 that hackers were actively using to siphon ...
Continue Reading

Credential Harvesting Attacks Targeting the U.S. Federal Government Nearly Double as Malware Declines

Mar 11, 2021 9:07:03 AM By Stu Sjouwerman
Shifts to a remote workforce in 2020 gave cybercriminals an opportunity to change tactics, focusing on credentialed access to systems accessed from outside government networks.
Continue Reading

FINRA Warns of Phishing Attacks

Mar 11, 2021 8:16:40 AM By Stu Sjouwerman
The Financial Industry Regulatory Authority (FINRA) has warned of a phishing campaign that’s trying to trick users into responding to a phony regulatory non-compliance issue. The emails ...
Continue Reading

See what happened when we "Zoom bombed" a customer with the cast of The Inside Man

Mar 11, 2021 7:00:00 AM By Stu Sjouwerman
Yes, this actually happened. The employees at Tennessee Aquarium were massive fans of The Inside Man, were not aware of this gag, and you can see their reactions when they see who the ...
Continue Reading

[Heads Up] Has Your Exchange Been Hacked And Is Now A Ticking Time Bomb?

Mar 10, 2021 9:37:31 AM By Stu Sjouwerman
Brian Krebs wrote: "Globally, hundreds of thousand of organizations running Exchange email servers from Microsoft just got mass-hacked, including at least 30,000 victims in the United ...
Continue Reading

Fake reCAPTCHA Found in Phishbait

Mar 10, 2021 8:21:18 AM By Stu Sjouwerman
Researchers at Zscaler warn of an ongoing phishing campaign targeting executives with fake voicemail notifications. More than half of the phishing emails have targeted organizations’ vice ...
Continue Reading

Recognizing Elder Scams

Mar 9, 2021 8:30:54 AM By Stu Sjouwerman
People need to ensure that their elderly relatives are aware of scams that target older people, according to Emma McGowan at Avast. McGowan says it’s best to avoid being condescending, ...
Continue Reading

CyberheistNews Vol 11 #10 [Heads Up] The Bad Guys Now Likely Own Your Exchange OWA Server

Mar 8, 2021 10:06:52 AM By Stu Sjouwerman
Continue Reading

The Different Scenarios How Backups are Vulnerable to Ransomware Attacks

Mar 8, 2021 8:25:16 AM By Stu Sjouwerman
Organizations need to ensure that their data backups aren’t tampered with by attackers, according to security firm Datto. In an article for Channel Futures, Datto explained that backups ...
Continue Reading

WSJ: Russian Disinformation Campaign Aims to Undermine Confidence in Covid-19 Vaccines

Mar 8, 2021 7:00:00 AM By Stu Sjouwerman
The Wall Street Journal reports: " Russian intelligence agencies have mounted a campaign to undermine confidence in Pfizer Inc.’s and other Western vaccines, using online publications ...
Continue Reading

[Heads Up] The Bad Guys Have Likely Hacked Your Exchange Email Server

Mar 6, 2021 9:48:40 AM By Stu Sjouwerman
What if Chinese state-sponsored hackers have owned your OWA using several brand-new zero-day vulns? Or Eastern Europe ransomware gangs? On March 2, Microsoft released emergency security ...
Continue Reading

Think Your Cyber Insurance is Going to Cover that $6 Million in Cyber Fraud? Think Again.

Mar 5, 2021 4:05:06 PM By Stu Sjouwerman
The latest tale of an organization falling victim to a business email compromise attack on their credit card processor highlights how very specific the scenario needs to be to see a ...
Continue Reading

1 in 4 Business Email Compromise Attacks Use Lookalike Domains to Trick Victims

Mar 5, 2021 4:02:18 PM By Stu Sjouwerman
The latest Data on BEC scams shows how the bad guys are using a mix of gmail accounts, increases in stolen wire transfers, and a shift to payroll diversions to trick you out of your money.
Continue Reading

Phishing Attacks Continue to Impersonate Trusted Brands to Deceive Potential Victims

Mar 5, 2021 4:00:12 PM By Stu Sjouwerman
The use of impersonation in phishing attacks helps to establish credibility and a sense of ease. New data shows exactly how the bad guys are using this tactic to their advantage.
Continue Reading

Vendor Email Compromise is Officially A Big (Seven-Figure) Problem

Mar 5, 2021 3:57:51 PM By Stu Sjouwerman
While the Solarwinds “sunburst” attack brought to light the compromising of a vendor, VEC has been around for some time and now seems to be going mainstream.
Continue Reading

Phishing Scammers Send a Fake “Private Shared Document” as the Initial Attack Vector for Stealing LinkedIn Credentials

Mar 5, 2021 3:55:42 PM By Stu Sjouwerman
A new social engineering scam demonstrates how cybercriminals are both evolving their tactics while still using tried and true methods that just work to attain their goals.
Continue Reading

Someone Hacked The Four Top Russian Cybercrime Forums In One Month

Mar 5, 2021 10:52:44 AM By Stu Sjouwerman
Intrepid investigative cyber security reporter Brian Krebs has some interesting news. He said: "Over the past few weeks, three of the longest running and most venerated Russian-language ...
Continue Reading

KnowBe4 Fresh Content Updates from February: Including New Season 3 of 'The Inside Man' Now Available

Mar 5, 2021 9:31:10 AM By Stu Sjouwerman
Here are important fresh content updates and new features to share with you that happened in the month of February.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews