Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Email Compromise Continues to Dominate as Top Threat Incident Type as Tactics Evolve

Jun 4, 2024 1:14:16 PM By Stu Sjouwerman

As email compromise attacks increase, analysis of tactics provides context on how organizations need to evolve their defenses.

CyberheistNews Vol 14 #23 [SPECIAL] The Hard Evidence That Phishing Training and Testing Really Works Great

Jun 4, 2024 9:00:00 AM By Stu Sjouwerman

Enhance NIS2 Compliance: Elevate Your Cybersecurity with Awareness & Culture Before The Deadline

Jun 4, 2024 7:58:59 AM By Stu Sjouwerman

The NIS2 Directive, also known as the Network and Information Security Directive, is a crucial piece of legislation designed to enhance cybersecurity and protect critical infrastructure ...

Russia’s Military Intelligence Service Launches Spear Phishing Attacks

Jun 3, 2024 1:39:24 PM By Stu Sjouwerman

Researchers at Recorded Future warn that BlueDelta, a threat actor tied to Russia’s GRU, is launching spear phishing attacks against European defense and transportation entities.

New Transparent Phishing Attacks Leverage Cloudflare Worker Serverless Computing

Jun 3, 2024 1:39:21 PM By Stu Sjouwerman

An increasing number of phishing campaigns from several threat groups are being tracked as they leverage legitimate Cloudflare services as part of account compromise attacks.

Your KnowBe4 Compliance Plus Fresh Content Updates from May 2024

Jun 3, 2024 8:00:00 AM By Stu Sjouwerman

Check out the May updates in Compliance Plus so you can stay on top of featured compliance training content.

91% of Every Ransomware Attack Today Includes Exfiltrating Your Data

May 31, 2024 1:43:03 PM By Stu Sjouwerman

New insight into ransomware attacks show that cyber attacks are a top concern for organizations – with many not aware they were a victim until after the attack.

Your KnowBe4 Fresh Content Updates from May 2024

May 31, 2024 8:00:00 AM By Stu Sjouwerman

Check out the 60 new pieces of training content added in May, alongside the always fresh content update highlights, events and new features.

Cybercriminals Target Hajj Pilgrims

May 29, 2024 2:42:39 PM By Stu Sjouwerman

Criminals are launching a variety of scams targeting Muslims around the world who are planning on making the Hajj pilgrimage to Mecca, according to researchers at Resecurity.

Criminals Abuse Cloud Storage Platforms to Host Phishing Sites

May 29, 2024 2:42:32 PM By Stu Sjouwerman

Threat actors are abusing cloud storage platforms to host phishing sites that can more easily evade detection by security scanners, according to researchers at Enea. Criminals are ...

Threat Actor Void Manticore Uses Cyber Weapon “Wipers” to Destroy Data and Systems

May 29, 2024 2:42:27 PM By Stu Sjouwerman

This Pro-Hamas hacktivist group has updated their payload arsenal to include updated versions of their BiBi Wiper malware, and two new wiper variants.

CyberheistNews Vol 14 #22 [HEADS UP] A Whopping 90% of Attacks Involve Social Engineering

May 29, 2024 9:00:00 AM By Stu Sjouwerman

China Threat Actor Targeting African and Caribbean Entities With Spear Phishing Attacks

May 28, 2024 2:27:04 PM By Stu Sjouwerman

The China-aligned threat actor “Sharp Dragon” is launching spear phishing attacks against government entities in African and Caribbean countries, according to researchers at Check Point.

[FedRAMP Phishing Rule]: "Users are the last line of defense and should be tested."

May 28, 2024 8:00:00 AM By Stu Sjouwerman

If you want to sell cloud-based software to the U.S. Government, you need to be FedRAMP authorized. This is what they state in their Program Overview:

CISA Releases Cybersecurity Resources for High-Risk Communities

May 24, 2024 3:43:39 PM By Stu Sjouwerman

Working to ensure all communities within the United States are educated and prepared, the Cybersecurity and Infrastructure Security Agency (CISA) has released a set of tools, services and ...

As Many as 1 in 7 Emails Make it Past Your Email Filters

May 24, 2024 3:42:17 PM By Stu Sjouwerman

Fluctuations in consecutive quarterly reports demonstrates that organizations should be worried that their cyber defenses may not be strong enough to stop phishing attacks.

Secure Your Site: Learn from the Top 10 Cybersecurity Experts of 2024

May 23, 2024 3:35:14 PM By Stu Sjouwerman

Companies have needed a website for the last 25 years at least. But where do you host your site? The techies at HostingAdvice decided to create an extremely thorough real-world review ...

New Research Finds Phishing Scams Targeting Popular PDF Viewer

May 23, 2024 2:40:28 PM By Stu Sjouwerman

Several phishing campaigns are targeting users of the Foxit PDF Reader, according to researchers at Check Point. Foxit is a popular alternative to Adobe Acrobat Reader for viewing PDF ...

UK Cybersecurity Org Offers Advice for Thwarting BEC Attacks

May 22, 2024 3:18:43 PM By Stu Sjouwerman

The UK’s National Cyber Security Centre (NCSC) has issued guidance to help medium-sized organizations defend themselves against business email compromise (BEC) attacks, especially those ...

Malicious Use of Generative AI Large Language Models Now Comes in Multiple Flavors

May 22, 2024 3:18:20 PM By Stu Sjouwerman

Analysis of malicious large language model (LLM) offerings on the dark web uncovers wide variation in service quality, methodology and value – with some being downright scams.

Security Awareness Training Blog

View Topics