Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

Credential Stuffing Attacks Shut Down Canada's Revenues Service

Aug 18, 2020 12:47:25 PM By Stu Sjouwerman
The Canada Revenue Agency is investigating two online hacking incidents affecting the personal information of thousands of Canadians, according to CBC News.
Continue Reading

U.K. Firms Have Dismissed Employees for Breaching Cybersecurity Policy Since COVID-19 Pandemic

Aug 18, 2020 11:23:11 AM By Stu Sjouwerman
Almost two-fifths of business decision-makers have fired employees because of a cybersecurity policy breach since the pandemic began, a survey has found.
Continue Reading

ABC News Interviewed Me on South Carolina Man Finding Personal Information of WWE Star and Raiding Her Home

Aug 18, 2020 10:13:04 AM By Stu Sjouwerman
A man in South Carolina was just arrested after finding the personal information of WWE Star Sonya Deville, and ABC Action News Tampa Bay interviewed me about how we can prevent ...
Continue Reading

CyberheistNews Vol 10 #34 My Lazy Sunday Afternoon Was Interrupted...

Aug 18, 2020 9:38:48 AM By Stu Sjouwerman
Continue Reading

The Celebrities Don't Know You, and You Don't Know Them

Aug 18, 2020 8:48:00 AM By Stu Sjouwerman
Over the past four months, the UK’s National Cyber Security Centre (NCSC) has shut down more than 300,000 URLs linking to investment schemes that fraudulently claim to be endorsed by ...
Continue Reading

RedCurl APT Uses Spear Phishing to Conduct Corporate Espionage

Aug 18, 2020 8:26:36 AM By Stu Sjouwerman
A previously unobserved APT group called “RedCurl” has been launching cyber espionage campaigns against organizations around the world since at least 2018, according to researchers at ...
Continue Reading

Trying for a win, win, win game. Listen to this 5-minute interview with me.

Aug 17, 2020 10:34:42 AM By Stu Sjouwerman
Cyberwire has a short-form podcast called Career Notes and interviewed me recently. They said: "Founder and CEO Stu Sjouwerman takes us on a journey of how his career developed from ...
Continue Reading

YIKES: Fancy Bear Linux Rootkit

Aug 14, 2020 2:31:27 PM By Stu Sjouwerman
Heads-Up! The CyberWire staff wrote: "The US National Security Agency and Federal Bureau of Investigation yesterday issued a joint alert concerning a new malware toolset operated by ...
Continue Reading

43,000+ NHS Staff Hit With Phishing Emails Since March

Aug 14, 2020 11:27:25 AM By Stu Sjouwerman
A Freedom of Information (FOI) request revealed that over 43,000 National Health Service (NHS) staff have had phishing emails slip through the cracks and into their inboxes in the past ...
Continue Reading

COVID-Themed Phishing Scams Are on Their Way Out While Some Scammers Use a Vaccine as a Last-Ditch Effort

Aug 13, 2020 2:33:47 PM By Stu Sjouwerman
The latest data on COVID-related phishing scams from security researchers at CheckPoint comes with some good news and insightful trends that may help keep you secure.
Continue Reading

Having a Wonderful Time, Wish Your Data Were Here

Aug 13, 2020 11:30:11 AM By Stu Sjouwerman
The US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued an alert warning that someone is impersonating the OCR and sending fraudulent postcards to ...
Continue Reading

[On-Demand] The Best Ways to Stop Malware and Ransomware That No One Else Will Tell You

Aug 13, 2020 10:15:42 AM By Stu Sjouwerman
With malware attacks on the rise, making sure you keep your organization safe from a costly breach is a top priority. The two best things you can do to stop malware and ransomware attacks ...
Continue Reading

Pressure, Peer and Otherwise: Ransomware and Data Theft Go Hand-In-Hand

Aug 13, 2020 9:01:33 AM By Stu Sjouwerman
Data theft is now a well-established element of ransomware attacks, according to John Shier, a Senior Security Expert at Sophos. In a blog post (summarized by iTwire), Shier noted that in ...
Continue Reading

My lazy Sunday afternoon was interrupted...

Aug 12, 2020 5:19:33 PM By Stu Sjouwerman
My lazy Sunday afternoon was interrupted with what appeared to be a prank, a social engineering attempt, or something else that remains to be identified.
Continue Reading

Paying the Ransom After a Ransomware Attack May Become More Complicated, Thanks to the U.S. Treasury

Aug 12, 2020 4:10:51 PM By Stu Sjouwerman
With many organizations considering to pay the ransom should they experience an attack, new guidance from the U.S. Treasury may put a damper on an organization’s ability to pay.
Continue Reading

[Heads Up] Apparently Slack Phishing Got So Bad They Had To Do Something About It

Aug 12, 2020 10:09:15 AM By Stu Sjouwerman
Slack has announced a slew of new security features, certificates and integrations, including a verification system that adds an additional layer to protect against phishing scams.
Continue Reading

CyberheistNews Vol 10 #33 [Heads Up] Explosion of Zoom Meeting Phishing Attacks Targeting O365 and Outlook

Aug 11, 2020 9:45:27 AM By Stu Sjouwerman
Continue Reading

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Aug 11, 2020 9:30:40 AM By Stu Sjouwerman
A new phishing attack spotted in the wild by security researchers at Trend Micro demonstrates how compromised data in an initial cyberattack is purposed in subsequent attacks.
Continue Reading

Many US States Requiring Training on COVID-19 Before Return to Work

Aug 11, 2020 9:25:24 AM By Stu Sjouwerman
Many states across the US are now mandating that organizations provide training to your employees before they can return to work. Definitely check your local state guidelines but KnowBe4 ...
Continue Reading

Legitimate Accounts for Illegitimate Business Email Compromise

Aug 11, 2020 8:28:12 AM By Stu Sjouwerman
Cybercriminals frequently use email accounts from legitimate services like Gmail to carry out business email compromise (BEC) attacks, Help Net Security reports. Researchers at Barracuda ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews