Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

KnowBe4 Ranks Top Cybersecurity Training Solutions, 2018 Black Book Market Research User Survey

KnowBe4 was rated highest in Cybersecurity Training & Education Solutions by survey respondents for the second consecutive year. TAMPA, Fla., May 14, 2018 /PRNewswire/ -- Black Book ...
Continue Reading

What Is The Reason Why The Ransomware Threat Is Not Going Away Any Time Soon?

It's KnowBe4's general policy to not mix business with politics or religion. However, sometimes geopolitics—which focuses on political power in relation to geographic space—is the only ...
Continue Reading

[Heads-up] New Attack Blindsides Microsoft Office 365 Anti-Phishing Filter And Blacklists

Phishers have found a way of moving the malicious URLs in their emails past Office 365's protections. The security company Avanan says they've observed criminals using a tag in the HTML ...
Continue Reading

Police Dept Loses 10 Months of Work to Ransomware. Gets Infected a Second Time!

Bleepingcomputer reported: "Ransomware has infected the servers of the Riverside Fire and Police department for the second time in a month. The first ransomware infection took place on ...
Continue Reading

Does Gmail's New 'Confidential Mode' Make Phishing Easier?

Gmail's new confidential mode lets its users create "expiration dates" for emails, or require recipients to provide an SMS passcode. (And Google also claims they've removed the option to ...
Continue Reading

HMRC warns of new wave of UK phishing scams

Rosie Murray West at the Financial Times reported: "Taxpayers are being targeted by a new wave of phishing scams linked to the financial calendar, HM Revenue & Customs has warned. ...
Continue Reading

The history and derivation of the word phishing...

The word "phishing" can't be found in Chaucer or Shakespeare. It is a homophone of "fishing". But why "ph" instead of "f"? Many English words of Greek origin transliterate "φ" (phi) as ...
Continue Reading

Equifax: "Oh, minor detail, we also lost 17.6 Million driver's licenses in that data breach"...

On May 7, executives of Equifax submitted a "statement for the record" to the Securities and Exchange Commission detailing the extent of the consumer data breach the company first ...
Continue Reading

KnowBe4 Releases Delegated Admin Permissions

KnowBe4 is proud to announce support for delegated permissions as part of the Security Roles feature. Security Roles allows you to limit roles to only display specific data or allow for ...
Continue Reading

[Breaking] New BitKangoroo Ransomware Deletes Your Files If You Do not Pay

Our friend Larry Abrams at Bleepingcomputer said: "I am trying something new where I will post in brief articles about new ransomware as they are released. Many of these ransomware ...
Continue Reading

[Heads-up] New Exploit Hacks LinkedIn 2-factor Auth. See This Kevin Mitnick VIDEO

OK, here is something really scary. KnowBe4's Chief Hacking Officer Kevin Mitnick now and then calls me with some chilling news. This time, Kuba Gretzky, a white hat hacker friend of ...
Continue Reading

Scam Of The Week: Phishing Attack Uses GDPR As Bait

Attackers know that companies are sending a lot of emails to customers about GDPR—and that makes them prime opportunity for phishing attacks. With the looming GDPR May 25 deadline almost ...
Continue Reading

Q1 2018 Top Clicked Phishing Email Subjects [INFOGRAPHIC]

This is the second year we've published quarterly results of the most-clicked phishing email subjects across a few categories. We separate the data into subjects related to social media ...
Continue Reading

Chinese Cyber Spies Focus On Spear Phishing... YOU!

Catalin Cimpanu at Bleepingcomputer reported: "Chinese cyber spies are evolving their tactics, focusing on IT staffers, relying more and more on spear phishing instead of malware, and ...
Continue Reading

Are Bad Guys Swapping TeamViewer For AnyDesk to install Blackheart Ransomware?

According to Trend Micro researchers a new ransomware strain called Blackheart drops its payload alongside the perfectly legitimate AnyDesk remote desktop tool, highly likely as a way to ...
Continue Reading

Cylance: "Phishing and drive-by downloads lead infection methods."

The most common infection vectors are still email phishing and drive-by downloads according to the latest threat report from AI security specialist Cylance. The report provides a ...
Continue Reading

86% Of Passwords Are Terrible And Employees Reuse Them All The Time

Troy Hunt, the founder of Haveibeenpwned came out with some brand new numbers that show there's bad news and there's more bad news. A few months ago he launched V2 of his Pwned Passwords ...
Continue Reading

Massachusetts School District Pays $10K to Ransomware Attackers

"A school district located in Massachusetts paid attackers $10,000 after they infected its computer network with crypto-ransomware. Officials at Leominster Public Schools decided to meet ...
Continue Reading

Gone Phishing: Travelers Claims Plan Doesn’t Cover Cyber Losses

Daniel R. Stoller at Bloomberg Law had an excellent observation about the risks of phishing related to general crime policies. Here is a short excerpt and the whole article is warmly ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews