Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

[Heads-up] The May 2018 GDPR Deadline May Fuel New Extortion Attempts

Trend Micro has released its annual security roundup, and it shows several interesting trends that will likely continue into 2018. There is bad news and worse news, with a little bit of ...
Continue Reading

Global Cyber Security Risk Perception: Highest Management Priorities

Few organizations are highly confident in their ability to manage the risk of a cyber-attack, despite viewing cybersecurity as a top risk management priority, according to a survey ...
Continue Reading

Scam Of The Week: Lowlife Scum Exploits Recent Florida Parkland School Shooting

Just when you think they cannot sink any lower, criminal internet scum are now exploiting the Parkland tragedy in Florida. Unfortunately, from this spot I have been warning about these ...
Continue Reading

Edward Snowden returns to U.S.! Oops, nope, it's a phishing scam

Bradley Barth at SCMedia nailed it when he wrote: "No, NSA whistleblower and U.S. fugitive Edward Snowden did not just purchase a 2 terabyte storage plan for iCloud, nor has he moved back ...
Continue Reading

Trusted Sites Often Deliver Phishing Attacks: Study

Ray Schultz at MediaPost had a great summary of some troublesome news: "Some of the world’s most popular websites are also the most dangerous when in comes to phishing attacks, according ...
Continue Reading

New Research: Number of Microsoft vulnerabilities continues to go up over the years

The number of Microsoft vulnerabilities has more than doubled in the last five years, according to the fifth annual Microsoft Vulnerabilities Report from Avecto. The global security ...
Continue Reading

New Multi-Stage Word Phishing Attack Infects Users Without Using Macros

Spam distributors are using a new technique to infect users with malware, and while this phishing attack relies on having users open Word documents, it does not involve social engineering ...
Continue Reading

Lazarus Hacking Group back with new phishing campaign targeting banks and bitcoin users

The North Korean Lazarus Hacking Group, suspected to be behind the WannaCry ransomware attack last year, has returned with a new crime spree, this time targeting financial institutions ...
Continue Reading

Security Awareness Training Top Priority for CISOs: Report [PDF]

SecurityWeek's Kevin Townsend wrote an excellent summary of the brand new FS-ISAC - "CISO Cybersecurity Trends Study": "Thirty-five percent of CISOs in the financial sector consider staff ...
Continue Reading

KnowBe4 Attains SOC 2 Type I Compliance For The Hosted Phishing And Training Product Offerings

KnowBe4, Inc, the world's largest security awareness training and simulated phishing platform, this week announced it has successfully completed a Service Organization Controls (SOC) 2 ...
Continue Reading

WHAT IS “REASONABLE CYBER SECURITY” AND HOW DO COURTS VIEW IT?

Shawn Tuma is an attorney with an internationally recognized reputation in cybersecurity, computer fraud, and data privacy law. He is a Cybersecurity & Data Privacy Attorney at Scheef ...
Continue Reading

New Trend In Phishing: Conversation Hijacking

Researchers see a new trend in phishing. Hackers are inserting themselves into email conversations between parties known to and trusted by one another. Once in, they exploit that trust to ...
Continue Reading

2018 Winter Olympics Phishing Campaign Hides Evil PowerShell Script In Image

Jonathan, at our friends at Barkly wrote: "Hi all, according to researchers at McAfee, a new malware campaign is targeting organizations associated with the upcoming 2018 Winter Olympics ...
Continue Reading

Tennessee Hospital Hit With Cryptojacking Attack Sends Out Databreach Notification

Decatur County General Hospital is notifying 24,000 patients of cryptomining software on its EMR system. In what may be the first report I’ve seen of a hospital having their EMR server ...
Continue Reading

KnowBe4 Introduces New Feature: Industry Benchmarking

You have probably seen our recent benchmarking study, drawn from a data set of more than six million users across over 23,000 organizations, showing real-world phishing results over time. ...
Continue Reading

The Simulated Phishing Market Enters Early Adolescence

By Perry Carpenter, KnowBe4 Chief Evangelist and Strategy Officer We certainly live in fun times: Barracuda acquiring PhishLine Microsoft adding limited phishing simulation to Office 365 ...
Continue Reading

KnowBe4 Fresh Content Update & New Features Summary Jan 2018

A lot of new modules have been added to the KnowBe4 ModStore: We refreshed 26 Language versions for our 15 min KMSAT course. (Available now). 20 language versions for Ransomware will be ...
Continue Reading

Microsoft Confirms: "Sending Simulated Phishing Attacks to Your Employees Is a Must"

Well, Microsoft just legitimized the whole new-school security awareness training market. I'm pleased to note that Microsoft has finally acknowledged that organizations need to send ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews