Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

U.K. Charity Workers Most At Risk From Phishing

Sep 7, 2019 8:35:41 AM By Stu Sjouwerman

Tessian report finds a large amount of U.K. charity workers aren't getting proper security awareness training. Michael Moore at ITProPortal wrote: "UK charities are leaving themselves ...

KnowBe4 Fresh Content and Feature Update - August 2019

Sep 6, 2019 3:53:46 PM By Stu Sjouwerman

Check out the content and feature updates in the KnowBe4 platform for the month of August!

Thousands Of Servers Infected With New Lilocked (Lilu) Ransomware

Sep 6, 2019 9:52:30 AM By Stu Sjouwerman

Thousands of web servers have been infected and had their files encrypted by a new strain of ransomware named Lilocked (or Lilu).

Advanced Android SMS Phishing

Sep 6, 2019 8:25:05 AM By Stu Sjouwerman

Attackers can launch SMS phishing attacks to remotely change settings on a victim’s Android device, researchers at Check Point have found. These attacks take advantage of weak ...

Why Do People Keep Falling For Facebook Hoaxes?

Sep 6, 2019 8:21:43 AM By Stu Sjouwerman

Falling for social media hoaxes indicates a deeper underlying need for online awareness, according to Ben Yelin from the University of Maryland Center for Health and Homeland Security.

Connecting Security Awareness Training Data to your Security Operations

Sep 5, 2019 2:18:28 PM By Stu Sjouwerman

Highlighting the value of connecting user security awareness trainings to the critical resources those users can access

Email Account Takeover and Lateral Phishing Attacks Increase Risk to Enterprises

Sep 5, 2019 11:53:21 AM By Stu Sjouwerman

The latest method of attack uses sender familiarity to lower victim defenses and increase the potential for scams, attacks, or fraud to succeed.

New Ursnif Malware Attacks Use Phishing, Social Engineering and Microsoft Word

Sep 5, 2019 11:49:28 AM By Stu Sjouwerman

The decade-old malware traditionally used to capture banking details has been given new life and spotted in the wild, being distributed via malicious Word documents.

Phishing for Cloud Providers A New Supply Chain Threat

Sep 5, 2019 7:29:23 AM By Stu Sjouwerman

Attackers are going after cloud-based customer relationship management (CRM) providers in order to launch unusually convincing phishing campaigns, KrebsOnSecurity reports.

Watch Out For Hurricane Dorian Phishing Scams. We have Templates Ready For You.

Sep 4, 2019 11:53:31 AM By Stu Sjouwerman

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns users to remain vigilant for malicious cyber activity targeting Hurricane Dorian disaster victims and potential ...

Multistage Phishing Attacks Target Financial Information

Sep 4, 2019 7:12:21 AM By Stu Sjouwerman

Trend Micro researchers have published details about a sophisticated phishing campaign they’ve named “Heatstroke.” The attackers behind Heatstroke go after victims’ private email ...

CyberheistNews Vol 9 #36 [Heads Up] AI Used for Social Engineering by Mimicking CEO’s Voice in Unusual Cybercrime Case

Sep 3, 2019 9:48:04 AM By Stu Sjouwerman

CEO Fraud Overtakes Ransomware And Data Breaches In EMEA Cyber-insurance Claims

Sep 3, 2019 7:13:29 AM By Stu Sjouwerman

CEO Fraud—also known as Business Email Compromise—related cyber-insurance claims accounted for nearly a quarter of all claims in the EMEA region, AIG said.

Double the Phish, Double the Phun

Sep 3, 2019 7:00:00 AM By Stu Sjouwerman

By Eric Howes, KnowBe4 Principal Lab Researcher. Over the past week we spotted something new and interesting in the malicious emails being reported to us by customers using the Phish ...

Alert Your Users About Calendar Scams And What To Do About Them

Sep 3, 2019 6:47:50 AM By Stu Sjouwerman

We’ve noted this particular scam before, but it’s continued to make a pest of itself, and so we bring it to your attention again. Scammers are abusing Google Calendar invites to send out ...

Phishing Scheme Gains Entry To Oregon Judicial Department Emails

Aug 30, 2019 2:55:14 PM By Stu Sjouwerman

Aubrey Wieber at the DemocratHerald reported: "A phishing scheme succeeded in breaking into the email accounts of five Oregon Judicial Department employees, exposing personal information ...

AI Used For Social Engineering. Fraudsters Mimic CEO’s Voice in Unusual Cybercrime Case | WSJ

Aug 30, 2019 2:46:17 PM By Stu Sjouwerman

Catherine Stupp at the Wall Street Journal reported on something we have predicted would happen in this blog. The article started out with:

New Course Available - California Consumer Privacy Act (CCPA)

Aug 30, 2019 2:26:25 PM By Stu Sjouwerman

Last year California passed a new law, similar to GDPR, called the California Consumer Privacy Act (CCPA) of 2018. This law is to be implemented on January 1, 2020. Any company doing ...

New ransomware grows 118% as cybercriminals adopt fresh tactics and code innovations

Aug 29, 2019 2:53:31 PM By Stu Sjouwerman

McAfee Labs saw an average of 504 new threats per minute in Q1 2019, and a resurgence of ransomware along with changes in campaign execution and code.

Ransomware Criminals Hack Dental Software Company And Take Hundreds Of Customers' Systems Hostage

Aug 29, 2019 2:35:25 PM By Stu Sjouwerman

Hundreds of dental practice offices in the US have had their computers infected with ransomware this week, ZDNet has learned from a source.

Security Awareness Training Blog

View Topics