Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Trinity Ransomware Targets the Healthcare Sector

Oct 11, 2024 8:37:56 AM By Stu Sjouwerman

The Trinity ransomware gang is launching double-extortion attacks against organizations in the healthcare sector, according to an advisory from the US Department of Health and Human ...

Google App Scripts Become the Latest Way to Establish Credibility and Automate Phishing Attacks

Oct 11, 2024 8:37:52 AM By Stu Sjouwerman

Cybercriminals have found a new way of leveraging legitimate web services for malicious purposes, this time with the benefit of added automation of campaign actions.

Hurricane Deepfakes Flood Social Media

Oct 9, 2024 6:32:39 AM By Stu Sjouwerman

As the recent hurricane Helene caused major damage and as hurricane Milton has left a path of destruction across Florida, deepfakes are spreading misinformation on social media.

Attackers Abuse URL Rewriting to Evade Security Filters

Oct 8, 2024 10:19:48 AM By Stu Sjouwerman

Attackers continue to exploit URL rewriting to hide their phishing links from email security filters, according to researchers at Abnormal Security.

CyberheistNews Vol 14 #41 [Wake-Up Call] Senator Falls Victim to Deepfake Scam. Are Your Users Next?

Oct 8, 2024 9:00:00 AM By Stu Sjouwerman

Free Phishing Platform Has Created More than 140,000 Spoofed Websites

Oct 7, 2024 2:00:22 PM By Stu Sjouwerman

A free phishing-as-a-service (PhaaS) platform named Sniper Dz has assisted in the creation of more than 140,000 phishing sites over the past year, according to researchers at Palo Alto ...

North Korea's Secret IT Army and How to Combat It

Oct 7, 2024 8:00:00 AM By Stu Sjouwerman

Organizations around the world are unknowingly recruiting and hiring fake employees and contractors from North Korea. These sophisticated operatives aim to earn high salaries while ...

Financial Services Industry Experiences a Massive Increase in Brand Abuse

Oct 4, 2024 3:37:43 PM By Stu Sjouwerman

Industry analysis of the domains used behind phishing and brand impersonation attacks show financial institutions are being leveraged at an alarming rate.

Infostealer Threat Group “Marko Polo” Evolving Into an “Empire”

Oct 4, 2024 3:37:40 PM By Stu Sjouwerman

New research by Recorded Future provides insight into how advanced and sophisticated the threat group Marko Polo has become since launching in 2022.

Cybercriminal Gang Targeting SMBs Using Business Email Compromise

Oct 3, 2024 11:58:20 AM By Stu Sjouwerman

Researchers at Todyl have published a report on a major cybercriminal group that’s conducting business email compromise (BEC) attacks against small and medium-sized businesses. Todyl ...

New VPN Credential Attack Goes to Great Lengths to Obtain Access

Oct 3, 2024 11:58:12 AM By Stu Sjouwerman

A new “so-phish-ticated” attack uses phone calls, social engineering, lookalike domains, and impersonated company VPN sites to gain initial access to a victim network.

The U.K.'s NCSC and U.S. FBI Warn of Iranian Spear-Phishing Attacks

Oct 2, 2024 3:10:00 PM By Stu Sjouwerman

The U.K.’s National Cyber Security Centre (NCSC) and the U.S. FBI have released an advisory warning of Iranian state-sponsored spear-phishing attacks targeting “individuals with a nexus ...

Dick’s Sporting Goods Cyber Attack Underscores Importance of Email Security and Internal Controls

Oct 2, 2024 3:09:58 PM By Stu Sjouwerman

The recent cyber attack on Dick's Sporting Goods makes it clear that email played a critical role and emphasizes the need for better security controls.

[Wake-Up Call] Senator Falls Victim to Deepfake Scam—Are Your Users Next?

Oct 1, 2024 1:56:14 PM By Stu Sjouwerman

When technology blurs the lines between reality and fiction, a recent incident involving U.S. Senator Ben Cardin serves as a stark reminder of the growing threat posed by deepfake scams.

Threat Actors Behind MFA Bypass Service ‘OTP Agency’ Plead Guilty to Fraud

Oct 1, 2024 1:56:11 PM By Stu Sjouwerman

The criminal prosecution of the threat actors behind the "OTP Agency" has highlighted an ingenious new tactic that cybercriminals can use to bypass multi-factor authentication.

New Survey Shows 40% of Respondents Never Received Cybersecurity Training From Their Employer

Oct 1, 2024 1:56:07 PM By Stu Sjouwerman

Yubico has published a survey of 20,000 people from 10 countries around the world, finding that 40% of respondents have never received cybersecurity training from their employer.

The Number of Ransomware Attacks Around the World Increased by 73% in 2023

Sep 30, 2024 3:37:13 PM By Stu Sjouwerman

The number of ransomware attacks around the world increased by 73% in 2023, according to a new report by the Institute for Security and Technology’s Ransomware Task Force (RTF). These ...

CyberheistNews Vol 14 #40 Online Scams Shorten Their Cycles 58% And Make More Money

Sep 30, 2024 8:00:00 AM By Stu Sjouwerman

Your KnowBe4 Compliance Plus Fresh Content Updates from September 2024

Sep 30, 2024 8:00:00 AM By Stu Sjouwerman

Check out the September updates in Compliance Plus so you can stay on top of featured compliance training content.

Scammers Use QR Code Stickers to Target UK Motorists

Sep 27, 2024 11:17:01 AM By Stu Sjouwerman

Netcraft warns that scammers are posting QR code stickers on parking meters in the UK and other European countries.

Security Awareness Training Blog

View Topics