Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

"It can't hurt to open one little attachment, can it?"

Brad Haan sent me this riot cartoon:
Continue Reading

PhishLabs Reports That Credential Phishing Has Shifted To The Enterprise

Why is credentials phishing moving from consumers to the enterprise, just like ransomware has done in the last 2 years? The answer might surprise you. Elliot Volkman at the PhishLabs ...
Continue Reading

ModStore Update: "2018 Safe Web Browsing" and "Ransomware"  Localized in 20 Languages

We have some good news! The "2018 Safe Web Browsing" and "2018 Ransomware" module's 20 language versions are now better than ever. As of today, the following improvements are now present ...
Continue Reading

Phishing threats still dwarf vulnerabilities and zero-days

Rob Wright at SearchSecurity wrote: "Proofpoint research shows that while phishing attacks now require victims to take more steps, the success rate for such attacks hasn't declined and ...
Continue Reading

Gone Phishing: Employer Faces Liability for Mistakenly Disclosing W-2 Forms to Scammer

Attorneys Zuckerman Spaeder noted on JDSUPRA: "When employers are caught off guard, they can face not only the loss of their own assets, but also liability to their employees. For ...
Continue Reading

Scam Of The Week: World's Largest Phishing Botnet Grows Evasive

The notorious Necurs botnet is one of the oldest and largest spam and phishing delivery systems in existence. It controls millions of machines that the criminal botmasters use to send ...
Continue Reading

PDF Files Can Be Abused to Steal Windows Credentials

PDF files can be weaponized by malicious actors to steal Windows credentials (NTLM hashes) without any user interaction, and only by opening a file, according to Assaf Baharav, a security ...
Continue Reading

Ransomware up 350% says 2018 Global Threat Intelligence Report

NTT Security 2018 Global Threat Intelligence Report (GTIR): Ransomware up 350% and spyware ranks first in volume of malware at 26% reflecting attackers' desire for long-term presence for ...
Continue Reading

Researchers discover next generation phishing kit

Researchers at Check Point and CyberInt, have discovered a new generation of phishing kit that is readily available on the Dark Web. The new kit, compiled and offered by a criminal whose ...
Continue Reading

Center for Orthopaedic Specialists notifies 85,000 patients of ransomware infection

Another indicator that a ransomware infection is seen as a HIPAA data breach and needs to be reported. The Center for Orthopaedic Specialists (COS) in California has three locations in ...
Continue Reading

Yahoo Pays $35 Million Penalty For The Hot Mess Of Their Massive Data Breach

This is the first time that a public company gets fined by regulators for failure to properly investigate their 2014 data breach, and disclose it to shareholders. Technically this is not ...
Continue Reading

Mysterious “double kill” Word/IE zero-day allegedly in the wild as phishing attack

“Double kill” is a bragging term from the world of violent video gaming – it means you finished off two assailants with a single shot. In the world of cybercrime, it’s the name given by ...
Continue Reading

Ransomware Attack Costs Dutch Builder 60,000 Euros

A ransomware infection has cost Dutch builder Almi Machinebouwers at least 60,000 euros. That is what director Frank Landhuis said in an interview with Sprout. Due to the infection, ...
Continue Reading

New Large Email Security Gap Analysis Shows a Massive 15% Failure Rate

We thought it was bad when we saw Cyren's recent analysis that 10.5% of bad emails made it through the filters. It could even be worse than that. "Mimecast's latest ESRA (email security ...
Continue Reading

[On-Demand Webinar] The Science and Methodology Behind Social Engineering

No matter how much security technology we purchase, we still face a fundamental security problem: people. Our CEO Stu Sjouwerman was interviewed by Information Security Media Group at RSA ...
Continue Reading

Poll: What Security Measures Are Most Effective In Fighting Ransomware?

The Spiceworks staff wrote: "Years after CryptoLocker raised its ugly head — setting off an unfortunate security trend — ransomware continues to be a rather painful thorn in the side of ...
Continue Reading

Many of us will be at the RSA Conference in SanFran this week. Here are some quick tips!

Lance Spitzner said: Eat breakfast, it may be the last meal you get that day. Schedule the most important meetings in the morning. RSA gives you a back-pack. Don't use it at the con, ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews