Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Check Point Software: "2022 Saw A Huge Rise In Cyberattacks"

Jan 16, 2023 8:42:12 AM By Stu Sjouwerman

Techradar reported that cyberattacks saw a significant rise in 2022, mostly due to the increase in organizations going virtual to combat the effects of the Covid-19 pandemic, and the rise ...

[Ache In the Head] The Problems With Your Not-So-Secure Email Gateway

Jan 14, 2023 9:59:24 AM By Stu Sjouwerman

I have been doing some research on Secure Email Gateways. The picture is not that pretty. Below I will summarize what I found.

[Heads Up] Phishing Attacks Are Now The Top Vector For Ransomware Delivery

Jan 13, 2023 6:57:21 AM By Stu Sjouwerman

Phishing attacks are now the top vector for ransomware delivery, according to researchers at Digital Defense. Phishing emails can be highly tailored to specific employees in order to ...

Government Workers as Phishing Targets

Jan 12, 2023 8:56:34 AM By Stu Sjouwerman

Government workers are prime targets for social engineering attacks, according to Kaitlyn Levinson at GCN. Attackers use different tactics to target government employees in specific ...

21% of federal agency passwords cracked in their security audit

Jan 11, 2023 10:38:29 AM By Stu Sjouwerman

Some excellent work here. An internal US Government agency audit showed that a fifth of passwords were easy to crack. Their recently published study showed that hashes for well over ...

Italian Cybercriminal Pleads Guilty to Phishing for Book Manuscripts

Jan 11, 2023 9:28:06 AM By Stu Sjouwerman

An Italian citizen named Filippo Bernardini has pleaded guilty in New York to stealing more than a thousand unpublished book manuscripts from various well-known authors. The targeted ...

CyberheistNews Vol 13 #02 [Bad Taste] There Is a New Trend in Social Engineering With a Disgusting Name; 'Pig-butchering'

Jan 10, 2023 9:00:00 AM By Stu Sjouwerman

The Good, the Bad and the Truth About Password Managers

Jan 9, 2023 10:36:23 AM By Stu Sjouwerman

We strongly recommend that you use a password manager to reduce password reuse and improve complexity, but you may be wondering if it’s really worth the risk. Is it safe to store all of ...

Phishing in the Service of Espionage

Jan 9, 2023 9:14:12 AM By Stu Sjouwerman

Reuters describes a cyberespionage campaign carried out by the hitherto little-known threat group researchers track as "Cold River." The group is circumstantially but convincingly linked ...

A Look Back at Mobile Government Cyberattacks Shows Increased Attacks and Weaker Security

Jan 6, 2023 2:43:01 PM By Stu Sjouwerman

A rise in the reliance on unmanaged mobile devices, matched with a lack of patching and increased attacks seeking solely to steal credentials was a perfect storm for government.

Ransomware and Fraudulent Funds Transfer are the Two Main Drivers of Cyber Loss

Jan 6, 2023 8:51:44 AM By Stu Sjouwerman

Representing more than half of all cyber loss, new data shows these attacks all begin with employees falling for social engineering, phishing, and business email compromise.

New Crypto Scam Targets Flipper Zero Buyers Impersonating Legitimate Shops

Jan 5, 2023 1:40:59 PM By Stu Sjouwerman

Interest in the handheld open-source multi-function cybersecurity tool by techies has risen to a new campaign seeking to steal crypto funds through illegitimate “sales” of the device.

Phishing Campaigns Impersonate the UK Government

Jan 5, 2023 8:34:42 AM By Stu Sjouwerman

The UK’s National Cyber Security Centre (NCSC) has outlined the top six most impersonated UK government agencies in 2022. The most impersonated entity was the National Health Service ...

These grim figures show that the ransomware problem isn't going away

Jan 5, 2023 8:32:40 AM By Stu Sjouwerman

ZDNet summarized the problem as follows: "Up to 1,981 schools, 290 hospitals, 105 local governments and 44 universities and colleges were hit with ransomware in the US alone during 2022, ...

CyberheistNews Vol 13 #01 [Heads Up] Giant LastPass Breach Can Supercharge Spear Phishing Attacks

Jan 4, 2023 9:30:00 AM By Stu Sjouwerman

Using AI Large Language Models to Craft Phishing Campaigns

Jan 4, 2023 8:41:49 AM By Stu Sjouwerman

Researchers at Check Point have shown that Large Language Models (LLMs) like OpenAI’s ChatGPT can be used to generate entire infection chains, beginning with a spear phishing email. The ...

There is a New Trend in Social Engineering with a Disgusting Name; "Pig-butchering"

Jan 3, 2023 1:52:21 PM By Stu Sjouwerman

The technique began in the Chinese underworld, and it amounts to an unusually protracted form of social engineering. The analogy is with fattening up a pig, then butchering it for all ...

Finance and Insurance Is the Sector Most Impacted by Data Breaches In 2022

Dec 30, 2022 2:40:01 PM By Stu Sjouwerman

Analysis of the year’s breaches shows Finance and Insurance businesses are the most targeted and have lost a material count of records as a result.

One Out of 10 Threats Still Make It All the Way to the Endpoint

Dec 30, 2022 2:34:39 PM By Stu Sjouwerman

Despite good intentions, layered security measures, and efficacy claims by security solution vendors, new data shows that email-based threats are still getting all the way to the Inbox.

Your KnowBe4 Fresh Content Updates from December 2022

Dec 30, 2022 9:21:35 AM By Stu Sjouwerman

Check out the 36 new pieces of training content added in December, alongside the always fresh content update highlights and new features.

Security Awareness Training Blog

View Topics