Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

Almost All LinkedIn User’s Data Has Been Scraped and is Up for Sale on the Dark Web

Jun 30, 2021 4:31:12 PM By Stu Sjouwerman
700 Million LinkedIn user’s personal details were posted for sale earlier this month, putting 92% of their userbase at risk of social engineering and spear phishing attacks.
Continue Reading

Spear Phishing Impersonation Attacks Take on New Tactics to Become More Convincing and Effective

Jun 30, 2021 4:31:09 PM By Stu Sjouwerman
As part of Business Email Compromise attacks, spear phishing now plays a material role, with impersonation sitting firmly at the core of their social engineering tactics… in more ways ...
Continue Reading

Yet Another Disk Image File Format Spotted in the Wild Used to Deliver Malware

Jun 29, 2021 2:00:41 PM By Stu Sjouwerman
Disguised as an invoice, cybercriminals use a Windows-supported disk image to obfuscate malware from email gateways and security scanners. The question is how viable will it be?
Continue Reading

35% of Cybersecurity Incidents are Business Email Compromise (BEC) Phishing Attacks

Jun 29, 2021 2:00:38 PM By Stu Sjouwerman
With cybercriminals looking for the fastest means to get from attack to a big payout, BEC attacks are shifting tactics to adjust to organizations being better prepared.
Continue Reading

[Eye Opener] The Biggest Bitcoin Heist Ever: A Whopping 3.6 Billion Dollars!

Jun 29, 2021 10:28:11 AM By Stu Sjouwerman
I'm not sure why this is not all over the press. Bloomberg picked up on this though. A pair of South African brothers have vanished, along with Bitcoin worth $3.6 billion from their ...
Continue Reading

CyberheistNews Vol 11 #25 [Heads Up] Attackers Abuse Your Google Docs With a New Phishing Angle

Jun 29, 2021 9:40:45 AM By Stu Sjouwerman
Continue Reading

New Phishing Attack Adds a Call Center Step to Get You to Download Malware

Jun 29, 2021 9:37:55 AM By Stu Sjouwerman
Unlike traditional phishing emails that simply attach or link to a malicious file, a new scam from cybercriminal group BazaCall makes victims call in and be instructed to download the ...
Continue Reading

Cybersecurity and Business Priorities Don’t Appear to Be Aligning – and That’s Bad for Your Security Stance

Jun 29, 2021 9:37:51 AM By Stu Sjouwerman
Despite organizational leadership believing cyber security initiatives can support business goals, the way businesses approach cybersecurity seems to prove otherwise.
Continue Reading

An Unusual Attachment is Most Likely a Phishing Campaign

Jun 29, 2021 9:37:48 AM By Stu Sjouwerman
A phishing campaign is using Windows Imaging Format (WIM) files to deliver malware, according to researchers at Trustwave. WIM files aren’t commonly thought of as potentially malicious, ...
Continue Reading

Misconfigured Cloud Database Increases Risk of Social Engineering

Jun 28, 2021 8:49:19 AM By Stu Sjouwerman
DreamHost, a major website hosting provider, exposed 814 million user account records in an unsecured database, researchers at Website Planet have found. The data exposed included a ...
Continue Reading

[HEADS UP] Over 400% Increase in Ransomware Victims

Jun 24, 2021 4:41:14 PM By Stu Sjouwerman
According to a recent report by OODA Loop, "Mandiant claims to have detected a 422% increase in victim organizations announced by ransomware groups via their leak sites year-on-year ...
Continue Reading

Threat Actors use Google Ads to Target People Migrating to Encrypted Messaging Services like Signal and Telegram

Jun 24, 2021 10:34:26 AM By Stu Sjouwerman
Researchers at eSentire warn that threat actors have been using Google Ads to target people migrating from WhatsApp to other encrypted messaging services, particularly Signal and Telegram.
Continue Reading

Attackers Abuse Google Docs for Phishing Attacks

Jun 24, 2021 8:48:29 AM By Stu Sjouwerman
Attackers are using a new technique to exploit Google Docs for phishing attacks, according to researchers at Avanan. The attackers take advantage of the fact that Google Docs ...
Continue Reading

ADATA Ransomware Attack Results in the Publishing of 700GB of Data Stolen

Jun 24, 2021 8:33:40 AM By Stu Sjouwerman
The headline alone sounds the warning that ransomware gangs aren’t just threatening to release exfiltrated data; they’re full out retaliating when they don’t get their ransoms paid.
Continue Reading

60% of Orgs Needed New Security Policies to Secure Their Remote Workforce

Jun 24, 2021 8:33:36 AM By Stu Sjouwerman
According to security compliance vendor ThreatSwitch in their 2021 Industrial Security Benchmark Report, organizations are waking up to the need for better awareness training.
Continue Reading

80% of Ransomware Victim Organizations Experience a Second Attack

Jun 22, 2021 10:16:11 AM By Stu Sjouwerman
The impact of ransomware attacks is much more than just the sensationalized cost of ransoms. New data spells out how victim organizations have suffered at the hands of ransomware.
Continue Reading

Leaked Copies of Windows 11 Could Be Tempting Phishbait for Techies

Jun 22, 2021 10:15:55 AM By Stu Sjouwerman
The latest anticipated release of Windows should be a reminder that even IT folks can be driven into a frenzy enough to miss the signs of a malicious campaign.
Continue Reading

Why Phishing Attacks Are So Easy, Successful and Profitable – and What to do About It

Jun 22, 2021 10:15:40 AM By Stu Sjouwerman
With phishing attacks being thought to have started literally 25 years ago, what makes this age-old method so continually valuable as a tool for cybercriminals and scammers?
Continue Reading

The Number of Phishing Sites in March Was Twice That of the Previous Year

Jun 22, 2021 10:15:22 AM By Stu Sjouwerman
With the number of phishing sites in Q1 overall up 47%, according to new data from Phishlabs, the bad guys are starting their year off letting you know… they mean business.
Continue Reading

KnowBe4 Makes eSecurity Planet's Best Security Awareness Training for Employees 2021 List

Jun 21, 2021 3:47:18 PM By Stu Sjouwerman
Security awareness training has made leaps and bounds in the last couple of years. With the old-school approach, a few bagels and long, boring powerpoint presentations can only get you so ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews