Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

Monkeying Around for Office 365 Credentials

Jul 13, 2020 10:40:38 AM By Stu Sjouwerman
Criminals are abusing SurveyMonkey to host redirect links to an Office 365 phishing page, researchers at Abnormal Security have found. The emails contain links to a real SurveyMonkey ...
Continue Reading

6000% Increase in Phishing Attacks Leveraging COVID-19, Healthcare Industry Often The Target

Jul 13, 2020 10:12:40 AM By Stu Sjouwerman
On July 3rd just before the holiday weekend, Mount Auburn Hospital's IT team identified suspicious activity. Alarmed, they quickly took steps to disconnect the Cambridge hospital's ...
Continue Reading

Ragnar Locker Ransomware Attacks Energy Company, Potentially Stealing 10TB in Data

Jul 13, 2020 7:03:00 AM By Stu Sjouwerman
In a letter to customers, EDP Renewables North America CEO acknowledges the attack occurred back in April of this year, but claims “no evidence” of data theft exists.
Continue Reading

Thanos Ransomware Attacks Now Disable Backups, Avoid Detection, and Impersonate the OS

Jul 13, 2020 7:02:00 AM By Stu Sjouwerman
Recent updates to the well-known Ransomware-as-a-Service – including the addition of RIPlace – make Thanos a formidable challenge for even well-secured organizations.
Continue Reading

Vishing Attacks Yield Phone Fraud Take of Over $100 Million

Jul 13, 2020 7:01:00 AM By Stu Sjouwerman
While not a new tactic, vishing presents cybercriminals with an attack method that’s perfectly aligned with the pandemic shifts to remote workforces.
Continue Reading

Ransomware Attacks on Manufacturing Yield an Average Payout of $271K

Jul 13, 2020 7:00:00 AM By Stu Sjouwerman
New data shows just how much major industries are paying out to remediate successful ransomware attacks, despite guidance to never pay the ransom.
Continue Reading

[HEADS UP] Office 365 Phishing Attacks Now Use Fake Zoom Suspension Alerts

Jul 9, 2020 1:33:56 PM By Stu Sjouwerman
Microsoft Office 365 users are targeted by a new phishing campaign using fake Zoom notifications to warn those who work in corporate environments that their Zoom accounts have been ...
Continue Reading

Back-to-School: a Buzzkill in More Ways than One

Jul 9, 2020 9:01:39 AM By Stu Sjouwerman
40% of the top twenty universities in the US aren’t using DMARC to mitigate phishing attacks that impersonate the universities’ domains, according to researchers at Tessian. Additionally, ...
Continue Reading

[On-Demand Webinar] Hackers Exposed: Kevin Mitnick Shares His Tradecraft and Tools to Help You Hack Proof Your Network

Jul 9, 2020 8:27:47 AM By Stu Sjouwerman
Months of quarantine, transitioning to work from home, economic uncertainty, social and political turmoil… it’s easy to see why your employees are amped up, tense and distracted. And the ...
Continue Reading

More Than 15 Billion Credentials Are For Sale in Criminal Markets

Jul 8, 2020 3:50:09 PM By Stu Sjouwerman
Researchers at Digital Shadows warn that there are more than 15 billion leaked login credentials for sale in online criminal marketplaces. This number is up 300% since 2018, and the ...
Continue Reading

How To Get And Stay Compliant With The New California Consumer Privacy Act (CCPA):

Jul 8, 2020 11:27:36 AM By Stu Sjouwerman
California's new AB 375 privacy law is not as bad as GDPR, but the details are still in flux. CCPA does not have some of GDPR's most scary requirements like the very short 72-hour window ...
Continue Reading

Gartner: You Should Focus On These 7 Specific COVID-19 IT Security Areas

Jul 8, 2020 10:59:44 AM By Stu Sjouwerman
Gartner observed: "Rapid responses to the coronavirus pandemic leave organizations vulnerable to security breaches. Security and risk teams must remain vigilant and focus on strategic ...
Continue Reading

Microsoft Seizes Six Domains Used in Sophisticated Phishing Scheme

Jul 8, 2020 8:24:34 AM By Stu Sjouwerman
Microsoft announced that the US District Court for the Eastern District of Virginia has ruled that the company can seize six domains that were being used in a widespread phishing ...
Continue Reading

CyberheistNews Vol 10 #28 60% of Organizations Are Hit by Cyberattacks Spread by Their Own Employees

Jul 7, 2020 10:49:38 AM By Stu Sjouwerman
Continue Reading

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

Jul 7, 2020 10:13:48 AM By Stu Sjouwerman
“This is a historic shift to the global email threat landscape and portends new and sophisticated social engineering attacks that CISOs around the world must brace for now,” according to ...
Continue Reading

FakeSpy Android Malware Distributed via Smishing

Jul 7, 2020 8:29:13 AM By Stu Sjouwerman
Researchers at Cybereason are tracking a sophisticated malware campaign targeting Android devices around the world. The campaign involves a new version of the FakeSpy information-stealing ...
Continue Reading

New Calendar Invitations as Phishbait Attack Wave

Jul 6, 2020 3:19:48 PM By Stu Sjouwerman
BleepingComputer warns that cybercriminals are using calendar invites to send phishing links to Wells Fargo customers. Researchers at Abnormal Security discovered this phishing campaign ...
Continue Reading

New Phishing Attack Targets 200M+ Microsoft 365 Accounts Via Malicious Excel .SLK Files to Bypass Security

Jul 6, 2020 3:10:03 PM By Stu Sjouwerman
Using an old (but supported) Excel filetype, attackers can bypass both Exchange Online Protection and Advanced Threat Protection to run malicious macros.
Continue Reading

More Companies Start Reporting Their Ransomware Infections As The Expensive Data Breaches They Are

Jul 6, 2020 11:57:00 AM By Stu Sjouwerman
Larry Abrams at Bleepingcomputer correctly observed: "Corporate victims are finally starting to realize that ransomware attacks are data breaches and have begun to notify employees and ...
Continue Reading

KnowBe4’s Q2 2020 Year-Over-Year Sales Grow 25%

Jul 4, 2020 9:47:36 AM By Stu Sjouwerman
We announced on July 2nd that 2020's second quarter was 25% higher in sales than Q2 2019, and that we are nearing a staff of 1,000 and 33,000+ customers worldwide. KnowBe4 continues on a ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews