Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

W-2 Phishing Scams Likely to Resurface After the New Year

W-2 phishing season is just a few weeks away. For the past several tax seasons, cyber criminals have used sophisticated social engineering tactics to dupe hundreds of payroll and HR ...
Continue Reading

How One of Australia's Richest Men Lost $1 Million in Email Scam

The multi-millionaire founder of Twynam Agricultural Group Pty Ltd. lost $1 million in an email fraud, a London court heard Thursday. The British man who facilitated the theft says he’s a ...
Continue Reading

Trojan Phishing Attacks By North Korean Hackers Are Attempting To Steal Bitcoin

Researchers at Secureworks report Trojan malware is being distributed in phishing emails using the lure of a fake job ad. A prolific cyber criminal gang with links to North Korea is ...
Continue Reading

Email Security Gap Analysis Shows 10.5% Miss Rate

Aggregated results show 10.5% average rates at which enterprise email security systems miss spam, phishing and malware attachments. Here is a summary of findings of email security systems ...
Continue Reading

[On-Demand Webinar] Counter the Careless Click: Tools to help you train your users

Cybercriminals are successfully and consistently exploiting human nature to accomplish their goals. Employee training is tied as the third-most-effective method (higher than antivirus) of ...
Continue Reading

Cyberheists Linked to Russian Hackers Targets Banks From Moscow to Utah

A previously unknown ring of Russian-speaking hackers has stolen as much as $10 million from U.S. and Russian banks in the last 18 months, according to a Moscow-based cyber-security firm ...
Continue Reading

KnowBe4 Content Update & New Features Summary

A lot of new modules have been added to the KnowBe4 ModStore: 2018 GDPR is available as a new course in 8 languages right now, and 15 more languages will be available by January 1st. 2018 ...
Continue Reading

Basic training in avoiding phishing is no longer sufficient

Databreaches.net has forums and one of their posts really got our attention. It was an official notification from the legal department of Boise Cascade Company in Utah about a phishing ...
Continue Reading

This ransomware asks victims to name their own price to get their files back

Attackers behind this form of file-encrypting malware - which has similarities with Locky - think that if the victim can set their own price, they're more likely to pay. A form of ...
Continue Reading

48 Servers Of North Carolina County Held Hostage by LockCrypt Ransomware

A hacker’s 1 p.m. deadline to pay $23,000 passed Wednesday, and Mecklenburg County has not decided whether to pay the ransom for a cyber-attack that “paralyzed” the county. County manager ...
Continue Reading

Cyber Warfare in 140 Characters: Social Media Weaponized

David Patriakos's new book about cyber warfare is a fascinating read. From the back cover: "Modern warfare is a war of narratives, where bullets are fired both physically and virtually. ...
Continue Reading

KnowBe4 Prevents Customer From Becoming Social Engineering Victim Of Duke Energy Vendor’s Hack

A customer just sent us this: "Stu, the company who processes payments for Duke Energy’s walk in payments was hacked and as a result about 375,000 bank accounts may have been stolen. "We ...
Continue Reading

Which of Your Employees Are Most Likely to Expose Your Company to a Cyber Attack?

Kon Leong at Harvard Business Review wrote an excellent article about the problem of employees exposing your organization to cyberthreats through human error. Here is a short qoute:
Continue Reading

Phishing Schemes Are Using Encrypted Sites To Seem Legit

WIRED wrote: "A MASSIVE EFFORT to encrypt web traffic over the last few years has made green padlocks and "https" addresses increasingly common; more than half the web now uses internet ...
Continue Reading

Mailsploit Bypasses DMARC And Lets Attackers Send Spoofed Phishing Emails on Over 33 Email Clients

Our friends at Bleepingcomputer reported on something that should cause anyone concern. German security researcher Sabri Haddouche has discovered a set of vulnerabilities that he ...
Continue Reading

KnowBe4 Wins Frost & Sullivan Cyber Security Awareness Training Platform Customer Value Leadership Award

I'm extremely pleased to tell you we have won a prestigious award. Frost & Sullivan is a global research and consulting firm and they recently announced that we received their 2017 ...
Continue Reading

Scam Of The Week: Phishers Target PayPal Users With Fake “Failed Transaction” Emails

Scammers are pushing out fake PayPal emails that use the premise of an unverified transaction to phish for customers’ personal and financial information. With the end-of-the-year holidays ...
Continue Reading

Your Cybercrime Insurance Policy May Not Cover You For Social Engineering Fraud

I have talked about this potentially extremely expensive and very disappointing "CEO fraud" or "Business Email Compromise" problem many times before. Your cybercrime policy may not ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews