Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

Do Employees Open Your Network to the Bad Guys by Using Hacked Passwords?

A whopping 25% of employees are using the same password for all logins. What if that password is available on the dark web? A massive amount of passwords are compromised due to data ...
Continue Reading

Don't Underestimate The Economic Side of Russia's Cyber Warfare

I just ran into an excellent article by Boris Zilberman, deputy director of congressional relations and a Russia analyst at the Foundation for Defense of Democracies. It was posted at The ...
Continue Reading

Learn From Your Mistakes: Organizations Simply Aren’t Ready

Even with the increase in threats and actual experienced attacks, executive and IT teams alike feel like they’re simply not ready for the next attack.
Continue Reading

[Heads-up] Employees Sue Company For W-2 Phishing Scam. Federal Court Decides Triple Damages

Imagine my surprise when I saw a picture of myself in the blog of large North Carolina Law firm Poyner Spruill. It was all good though. They had picked up an example of a real W-2 ...
Continue Reading

Exclusive Interview with Kevin Mitnick Ask Me Anything [VIDEO]

KnowBe4's Chief Hacking Officer Kevin Mitnick sat down with our team for an exclusive interview where we could ask him anything… We thought you’d like to hear his answers, too. Ever ...
Continue Reading

The FBI recently published its 2017 Cybercrime Report highlighting trends and statistics

The FBI recently published its 2017 Internet Crime Report highlighting trends and statistics compiled by the FBI’s Internet Crime Complaint Center (“IC3”) during 2017. The report compiles ...
Continue Reading

New Sleeper Strain of SamSam Ransomware Bypasses AV And Stays Hidden On Your Network

The ransomware strain that crippled several cities and school districts in the U.S. earlier this year is back with more tricks up its sleeve to avoid detection. If you haven’t heard of ...
Continue Reading

Penalty! Another FIFA World Cup Phishing Scam Found

As we round out the second week of the FIFA World Cup, new phishing scams continue to permeate, seeking to take advantage of fan’s interest and excitement.
Continue Reading

It Saves Your Battery, But Its Social Engineering Steals Your Data

Google Play is a walled garden, but the serpents do find their way in. RiskIQ has found one snake with a tempting offer on its forked tongue: an app that "saves the battery" in your ...
Continue Reading

[ALERT] There Is A New Hybrid Cyber Attack On Banks And Credit Unions In The Wild

A customer just called me. He found a new strain of attack that's the next scary thing your organization may become the target of.
Continue Reading

Banking Still a Major Target of Cybercrime

1950’s bank robber Willie Sutton was once—erroneously—quoted as saying “I rob banks because that’s where the money is.” Sutton never said it, a reporter made up the quote. However, cyber ...
Continue Reading

Why Preventing Social Engineering Isn’t Enough

The heightened state of cyber attacks in recent years has put a lot of focus on preventing those attacks from being successful. But, organizations can’t simply rely on defensive ...
Continue Reading

Even Law Firms Suffer from Social Engineering

They may not fall for an advance fee scam from an emailer claiming to be the widow of a Nigerian prince, but law firms have their issues with social engineering, too.
Continue Reading

What Is Angler Phishing And How Do I Avoid Becoming A Victim?

Experian in an ongoing campaign to clean up their massive hack came out with a useful post: What is Angler Phishing? Angler phishing is the practice of masquerading as a customer service ...
Continue Reading

Cyber Security Insurance: Underwriting Is Changing Because Of Billions Of Potential Exposure

Cybersecurity insurers, faced with growing demand, are looking for new ways to better measure their risks, says Aleksandr Yampolskiy, CEO of SecurityScorecard. So some are moving toward ...
Continue Reading

Can Russian hackers be stopped? Here's why it might take 20 years (cover story PDF)

Here's some excellent ammo from TechRepublic for a long-term IT security budget proposal. For this TechRepublic cover story, their Editor in Chief EMEA Steve Ranger explains why deterring ...
Continue Reading

Phishing Attacks Make Mortgage Wire Fraud Easier

The stress of obtaining a mortgage has just gotten worse, thanks to cybercriminals trying to con you out of your money. In new attacks targeting companies involved in the mortgage lending ...
Continue Reading

Vacation Dream Home Phishing Nightmare (but with a Happy Ending)

Mike Malone and his wife found the vacation condo of their dreams in Florida. They were in touch with a real estate agent who was handling the deal when suddenly their condo purchase ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews