Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.


Recent Posts

Phishing campaigns and malware infections are both up more than 40% since Q2 ‘17

The NTT Security Global Threat Intelligence Center (GTIC) 2017 Q3 Threat Intelligence Report provides a glimpse inside the research conducted by NTT Security researchers over the last ...
Continue Reading

Google Kicks Harmful Apps Out Of Google Play And Offers 5 Steps Against Social Engineering

You're always better off getting apps from reputable stores like Google Play than you are from potentially dodgy, at best unknown, third-party sites. But even Google Play isn't immune ...
Continue Reading

If Willie Sutton were working today, he'd be stealing cryptocurrency, not wasting time on banks

Because that's where the money is. Criminals have been installing cryptocurrency miners on victim machines that turn them into sources of money. These operate without the users' ...
Continue Reading

Proposed New Legislation: "Security Awareness Training For Your Users Or Go To Jail"?

OK, it may be hyberbole, but since 91% of data breaches are caused by successful spear phishing attacks, it's not entirely crazy to say: "security awareness training your users or go to ...
Continue Reading

New CyberThreat Survey Confirms: Biggest Security Obstacle Is Low User Security Awareness

The CyberEdge Group is an award-winning research firm that serves information security vendors and service providers. They recently surveyed 1,100 qualified IT security decision makers ...
Continue Reading

UK Shipping firm Clarksons falls victim to hybrid ransomware / data theft extortion

Shipping company Clarksons has fallen victim to a major ransomware attack that could result in the exposure of private data, the company warned today. The statement continued: "Our ...
Continue Reading

77% of the FTSE 100 Have Compromised Credentials - What is your Stolen-password percentage?

IT security vendor Anomali, released a new report showing the volume of stolen credentials of FTSE 100 employees tripled In 2017, and a whopping 77% of the FTSE 100 were exposed with an ...
Continue Reading

Yahoo Hacker Arrested And Admits Working for The Russians

The Kazakhstan-born Canadian citizen Karim Baratov (22) has pleaded guilty to massive 2014 Yahoo hack that affected three billion accounts. He admitted that he generally spearphished his ...
Continue Reading

Stolen Passwords Of FTSE 100 Employees Tripled In 2017

The Financial Times Stock Exchange 100 share index is an average of share prices in the 100 largest, most actively traded companies on the London Stock Exchange. IT security vendor ...
Continue Reading

Surface Web vs. Deep Web vs. Dark Web: Differences Explained

These three terms are often a source of confusion, especially in connection with cybercrime and where that comes from. If you think that search engines like Google (there are more!) know ...
Continue Reading

Baffling FBI silence about Russian phishing attacks on US officials

WASHINGTON – The Associated Press revealed a baffling FBI silence about spear phishing attacks by Russian hackers on US officials like the former head of cybersecurity for the U.S. Air ...
Continue Reading

Something funny happened on the way to repealing Net Neutrality rules...

Sorry to interrupt your Thanksgiving, but this one has had me laughing all afternoon. You might have seen the news that the Trump-era FCC is planning to repeal the Net Neutrality rules ...
Continue Reading

Massive Phishing Attack On Businesses with Evil New Ransomware Strain

The Scarab ransomware strain is updated again and spreads via Necurs botnet in a massive 12.5 million campaign, mostly targeting .com domains. Scarab was spotted June 2017 for the first ...
Continue Reading

Spam was nearly dead, then it became an essential tool for crime and came roaring back

John Christian at TheOutline wrote a post that made me take notice because it neatly summarized the current state of affairs and confirms our own experience: spam has morphed and is back ...
Continue Reading

URGENT - If IT and Marketing are not freaking out about GDPR compliance, you are not paying attention

I found an article about GDPR compliance written by the fine folks of HubSpot, which we use ourselves here at KnowBe4 use for marketing automation. We have customers in Europe, so our ...
Continue Reading

Uber Total Loss: 57 Million Records Stolen But Data Breach Was Hidden For A Year

Oh boy. Uber is known for pushing the limits of the law and has dozens of lawsuits pending against it, but this one went too far and now comes the reckoning. Bloomberg was first to report ...
Continue Reading

[ALERT] Zombie Remote Access Phishing Trojan Kills Antivirus

Almost two years ago we took note of two different write-ups on the Adwind (aka AlienSpy) remote access trojan (RAT), one by McAfee and the other by Fidelis Security. Those pieces caught ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews