Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

New Report: Mobile Phishing on the Rise

With users being three times more likely to click on a suspicious link on their mobile device, along with over half of mobile users tapping on a phishing URL, mobile phishing is a bigger ...
Continue Reading

[Scam Of The Week] Amazon Prime Day Is Only 4 days away

It's a prime opportunity for the bad guys to send a raft of phishing attacks. We do have a "Free Amazon Prime Account" template that we just modified to fit a Prime Day-style scam. It's ...
Continue Reading

From the Phishing Archives: Just How Far Will Cybercriminals Go for a Scam? Apparently into Outer Space.

The Nigerian Prince scam was found taking a turn upwards to the stars, seeking your help to bring a poor lonely astronaut home.
Continue Reading

Do You Have A Millennial Security Awareness Training Gap?

Unlike previous generations, millennials have used (and trusted) technology all their lives. So, does it cause a gap in your organization’s Security Awareness Program?
Continue Reading

North Korea Brings Light to a “Cool” Way to Spread Malware

In the midst of all the political talk about the recent summit between the United States and North Korea, one particular gift caught the eye of security experts.
Continue Reading

Sextortion Phishing Campaign Uses Recipient's Hacked Passwords

Krebs on Security has posted a new item: "Here's a clever new twist on an old email scam that could serve to make the con far more believable. The message purports to have been sent from ...
Continue Reading

[Heads-Up] New Deceptive Strains Of Payroll Phishing: "Because that's where the money is..."

Most readers will probably be familiar with the story of bank robber Willie Sutton who, after being nailed by the cops, was asked why he robbed the bank. His answer (undoubtedly delivered ...
Continue Reading

Court Ruling: Chubb Insurance Unit Crime Policy Covers ‘Spoofed’ Phishing Wire Transfer

Very interesting article in the Insurance Journal. In a closely-watched case on insurance coverage in an age of expanding cyber risk, a federal appeals court in New York has upheld a ...
Continue Reading

Don’t Catch a Case of the (Gand)Crabs!

As irritating as a real case of the crabs can be, organizations now have to deal with GandCrab v4 – a more dangerous and invasive newly released strain of the notorious ransomware. If you ...
Continue Reading

"What Exactly Are The Risks Of Breached Passwords?"

First of all, the term means that a particular password is available in a data breach on the dark web–and there are billions of breached passwords out there. KnowBe4 just released a free ...
Continue Reading

Context is the Key to Phishing Success

According to the latest report from NIST, one of the most critical factors around whether a user clicks a phishing email or not is context.
Continue Reading

Consumer Privacy: California Follows in the Footsteps of GDPR

The California Consumer Privacy Act of 2018 (AB 375) takes effect on January 1, 2020 and will be the most exacting data privacy policy in the United States. Similar to the European ...
Continue Reading

Watch Out – Cryptojacking rises 1,180 percent!

As if ransomware wasn’t enough of a problem, the addition coin mining malware’s and a 1,189% mind-bending increase is enough to make you sit up and take notice. Cryptomining is a ...
Continue Reading

Nothing is Sacred: Scammers Phish Church Parishioners

Always looking for new ways to separate you from your money, cybercriminals in Canada are using names of priests and archbishops to solicit money.
Continue Reading

They’re Trying to Run Malicious Code (And You’re Letting Them!)

According to a new threat report from security vendor eSentire, 91% of endpoint incidents involve files that won’t be defeated/blocked/removed by anti-malware solutions.
Continue Reading

KnowBe4’s Year-Over-Year Sales DOUBLE Q2 2018

We doubled our year-over-year sales for Q2, bringing us to well over 19,000 customers worldwide. This makes 21 consecutive up quarters.
Continue Reading

Homographic Domains Make Phishing Scams Easier

Is that email from citibank.com or citíbank.com? If you think that last sentence was a mistake, take another look, as you may be the next phishing victim. Cybercriminals are using ...
Continue Reading

Kiss Your Privacy Goodbye. Exactis Leaks A Database With 340 Million Personal Data Records

Whoa Nellie. Here is the ultimate spear phishing data trove. WIRED reported: "Earlier this month, security researcher Vinny Troia discovered that Exactis, a Palm Coast, Florida-based data ...
Continue Reading

When Ransomware Attacks Triple, You Need to Pay Attention!

Security vendor SonicWall just released their latest report on cyberattack volumes… and the numbers are staggering.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews