Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Spycatching: Social Engineering and the FBI's Insider Threat Experience

Apr 15, 2019 5:11:52 PM By Stu Sjouwerman

We’ve recently shared a link to a podcast, “The Ghost and the Mole,” which revisits the infamous case of FBI Special Agent turned Russian spy Robert Hanssen. Before dismissing this as ...

CyberheistNews Vol 9 #16 The City of Tallahassee Lost Half a Million Dollars in an Insidious Payroll Attack

Apr 15, 2019 9:55:52 AM By Stu Sjouwerman

Extortionists Threaten Victims with WannaCry Ransomware

Apr 15, 2019 6:37:32 AM By Stu Sjouwerman

An email extortion scam is threatening victims with DDoS attacks and WannaCry ransomware, according to researchers at Avast. The scammers claim to have hacked the victim’s network and ...

[PODCAST] The ghost and the mole; Eric O'Neill's Gray Day.

Apr 15, 2019 6:30:42 AM By Stu Sjouwerman

Eric O’Neill is a former FBI counterintelligence and counterterrorism operative, and founder of the Georgetown Group, a security and investigative firm, as well as national security ...

Reuters: "Cybersecurity Firm Cofense Says Pamplona To Sell Stake After U.S. Probe"

Apr 11, 2019 7:01:24 AM By Stu Sjouwerman

(Reuters) - U.S. cybersecurity firm Cofense Inc said on Wednesday that buyout firm Pamplona Capital Management is seeking to sell its stake in the company following a year-long probe by ...

What's The Best Name? ThreadJacking or Man-in-the-Inbox Attacks?

Apr 10, 2019 2:23:33 PM By Stu Sjouwerman

We are seeing a new type of attack popping up more and more. Bad guys send a phishing attack and steal the credentials of your employee. But they stay under the radar and lurk for a while ...

Get Ready for the First Wave of AI Malware

Apr 10, 2019 10:41:43 AM By Stu Sjouwerman

This is an excerpt from an article in SecurityWeek by Gunter Ollmann, who is currently the CSO of Microsoft’s Cloud and AI Security division. He is a seasoned information security leader.

Ottawa City Treasurer sends $128,000 to fraudsters in email phishing scam

Apr 10, 2019 7:05:29 AM By Stu Sjouwerman

The treasurer of the city of Ottawa, Marian Simulik, fell for a business email compromise (BEC) scam and sent $100,000 to a scammer, the city’s auditor general revealed this week. Simulik ...

[Heads-up] Survey Finds 82% Of You Are Impacted By Payment Fraud

Apr 10, 2019 6:53:10 AM By Stu Sjouwerman

Payment fraud continues to soar, as a record 82 percent of organizations reported incidents in 2018, according to the 2019 AFP Payments Fraud & Control Survey, underwritten by J.P. ...

A Powerful Malware That Tried To Blow Up A Saudi Plant Strikes Again

Apr 10, 2019 6:39:02 AM By Stu Sjouwerman

A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility.

Organizations Face a 63% Likelihood of Being the Victim of Successful Cyberattack in Next 12 Months

Apr 10, 2019 6:27:56 AM By Stu Sjouwerman

The latest data from 1,200 IT organizations shows organizations seeing attacks as inevitable and, for some industries, successful compromise as even more a given.

Tallahassee Loses Half a Million From Cyberattack

Apr 9, 2019 9:46:27 AM By Stu Sjouwerman

Hackers stole approximately $498,000 from the city of Tallahassee, Florida, by diverting city employees’ paychecks, according to USA Today. The attackers hacked a third-party vendor that ...

CyberheistNews Vol 9 #15 [Heads-Up] New Phishing Attacks Make 2FA Useless

Apr 9, 2019 9:35:45 AM By Stu Sjouwerman

Cybercrime market selling full digital fingerprints of over 60,000 users

Apr 9, 2019 6:49:49 AM By Stu Sjouwerman

ZDNet reported something surprising. A new dark web market called Genesis is selling users' personal data, complete with digital fingerprints, such as account credentials, cookies, ...

Pro Tip: Social Security Numbers Can’t be “Suspended”

Apr 9, 2019 6:38:06 AM By Stu Sjouwerman

A popular robocall scam is telling people that their Social Security numbers have been “suspended,” and then asking them to call back to speak a government agent about the issue, ...

The Latest in Phishing Tackle

Apr 8, 2019 10:27:58 AM By Stu Sjouwerman

Phishing kits are using increasingly sophisticated techniques to avoid detection and make their scams more convincing, according to Prakhar Shrotriya at Zscaler.

New Phishing Attacks Make 2FA Useless

Apr 8, 2019 7:10:26 AM By Stu Sjouwerman

These latest attacks are designed to proxy login requests that incorporate SMS-based authentication as a way to seamlessly bypass 2FA protection without being noticed.

Ransomware Attacks Take Down County Government Offices Time and Time Again

Apr 8, 2019 7:04:04 AM By Stu Sjouwerman

It seems like government offices aren’t learning their lesson, with ransomware attacks continuing to impact operations and cost time and money to recover.

The Total Risk Value of Cybercrime Has Risen to $5.2 Trillion Over the Next Five Years

Apr 8, 2019 6:55:31 AM By Stu Sjouwerman

According to new data from Accenture, the average company sees 145 security breaches annually, with the cost of experiencing any kind of cyberattack rising.

90 Percent Of Critical Infrastructure Hit By Cyberattacks

Apr 6, 2019 10:23:40 AM By Stu Sjouwerman

A new survey of professionals in industries using industrial control systems (ICS) and operational technology (OT) finds 90 percent of respondents say their environment has been damaged ...

Security Awareness Training Blog

View Topics