Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Bleeding Edge Phishing Attack Uses Decoy PDF with Microsoft-issued SSL Cert

Oct 3, 2018 2:21:01 PM By Stu Sjouwerman

TL,DR: A recent phishing attack posing as a PDF decoy from a Denver law firm was stealing clients' Office 365 credentials. The phishing bait was hosted in Azure blob storage and contained ...

Hackers: Social Engineering is Easier

Oct 2, 2018 5:15:41 PM By Stu Sjouwerman

Despite the presence of application and OS vulnerabilities – both new and old – hackers prefer to leverage social engineering as their preferred attack method.

Worry About Phishing, Not Malware!

Oct 2, 2018 5:10:25 PM By Stu Sjouwerman

With so many security strategies revolving around the detection of malware, organizations forget the primary source of all their worries – phishing.

CyberheistNews Vol 8 #39 [Heads-Up] Now in the Wild: New Super Evil Rootkit Survives Even "Nuke From Orbit" and HD Swap

Oct 1, 2018 9:57:27 AM By Stu Sjouwerman

[Heads-up] Now In The Wild: New Super Evil Rootkit Survives Even "Nuke From Orbit" And HD Swap

Sep 30, 2018 7:56:38 AM By Stu Sjouwerman

This thing is a nightmare that escaped into daylight. The Russian GRU—aka Fancy Bear—probably was riveted reading the Wikileaks CIA Vault 7 UEFI Rootkit docs (PDF) and built one of these ...

Kevin Mitnick weighs in on Facebook's big security breach

Sep 29, 2018 9:58:59 AM By Stu Sjouwerman

It was all over the news, and CNBC interviewed KnowBe4's very own Chief Hacking Officer Kevin Mitnick (note the StreetCred box on the right).

[InfoGraphic] 20 Ways to Block Mobile Attacks

Sep 28, 2018 5:14:43 PM By Stu Sjouwerman

To start your National Cyber Security Awareness Month (NCSAM) here is a goodie for your users to kick things off.

Targeted Attacks Replace Spam Campaigns

Sep 28, 2018 12:37:50 PM By Stu Sjouwerman

Spam campaigns are all but dead. But lucrative targeted low-risk, high-yield cyber-attacks have risen to take their place, according to the European Union law enforcement agency Europol.

The Cybercrime Economy Makes It Impossible to Stop

Sep 28, 2018 12:33:29 PM By Stu Sjouwerman

The operation run by botnet author Peter Levashov demonstrates how easy it is for would-be criminals to get into the business.

The Human Element is Essential to Safe Social Networking

Sep 28, 2018 10:04:10 AM By Stu Sjouwerman

This is common wisdom, but it bears repeating, because common wisdom is easily overlooked. People are often called an organization's greatest asset. They're also its greatest ...

Holiday Threat No. 1: Evil Twin Domains With A "Trusted" SSL/TSL Certificate

Sep 27, 2018 11:38:19 AM By Stu Sjouwerman

As the holiday season approaches, cybercriminals are set to scam your users out of their personal money but also your organizational budget.

Brand-New Tool: Domain Doppelgänger Identifies Evil Twin Domains

Sep 27, 2018 10:56:40 AM By Stu Sjouwerman

I gave you a heads-up a few days ago, and now I'm excited to announce the actual release of a new tool to help protect your organization from cybercriminals.

The Lowly USB Drive Remains A Critical Cyberthreat

Sep 27, 2018 6:27:30 AM By Stu Sjouwerman

Curtin Franklin at Darkreading correctly observed: "USB thumb drives may be used less frequently than before, but they are still commonly used as infection vectors for a wide variety of ...

Phone Scam Impersonates Sheriff’s Office Using Judge’s Name

Sep 26, 2018 5:42:04 PM By Stu Sjouwerman

The US Marshals Service has stated that a new phone scam is targeting residents of Marshall, Texas. The scammer claims to be from the local sheriff’s office and tells residents that the ...

Ewww. Password managers can be tricked into believing that malicious Android apps are legitimate

Sep 26, 2018 1:56:02 PM By Stu Sjouwerman

Ewww. Something else to watch out for. Will it ever stop?. Ummm, no.

Highly Targeted Email Attacks Are on the Rise!

Sep 26, 2018 11:36:52 AM By Stu Sjouwerman

New data shows a surge in attacks, what industries are targets, which users are at risk, and what you can expect to see in the future.

As Predicted, Hurricane Florence Phishing Scams are Circulating

Sep 25, 2018 1:11:26 PM By Stu Sjouwerman

We’ve noted in other posts that events like natural disasters are inevitably used as phishbait by scammers. The Atlantic hurricane season, which breeds storms like the recent and very ...

Adwind Trojan Uses Phishing To Circumvent Antivirus And Infect Workstations

Sep 25, 2018 7:25:20 AM By Stu Sjouwerman

Charlie Osborne reported at ZDNet that Adwind, a Remote Access Trojan (RAT) previously connected to attacks against industries worldwide, is back with a new toolkit designed to trick ...

I Got Vished (and So Can Your Users)

Sep 25, 2018 7:01:18 AM By Stu Sjouwerman

Written by Guest Blogger Nick Cavalancia, Microsoft MVP Hear one cybersecurity expert’s experience of missing the signs and getting duped over the phone. If it can happen to him, it can ...

CyberheistNews Vol 8 #38 [FBI ALERT]: "Cybercrime Uses Social Engineering Techniques to Steal Employee Credentials and Commit Payroll Diversion."

Sep 24, 2018 10:04:08 AM By Stu Sjouwerman

Security Awareness Training Blog

View Topics