Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

There’s No Such Thing as a Free Yeti, Only Social Engineering Tactics

Nov 28, 2022 11:34:57 AM By Stu Sjouwerman
It’s easy to think of the typical online holiday scam as something that affects mostly individuals. Sad, maybe, and unfortunate, but not something that might seriously threaten a ...
Continue Reading

WhatsApp data breach sees nearly 500 million user records up for sale

Nov 26, 2022 3:29:06 PM By Stu Sjouwerman
Craig Hale at Techradar reported: "A post on a “well-known hacking community forum” claims almost half a billion WhatsApp records have been breached and are up for sale.
Continue Reading

[Send This To Your Users] 5 Top Scams To Watch Out For This Holiday Season

Nov 25, 2022 4:05:48 PM By Stu Sjouwerman
Here is a 3-minute article that we suggest you copy/paste and send to all your users as part of your ongoing security culture campaign. "The holiday season is a time when people are ...
Continue Reading

Cybersecurity incidents cost organizations $1,197 per employee, per year

Nov 25, 2022 3:39:41 PM By Stu Sjouwerman
This statistic is alarming and underscores the importance of having a robust cybersecurity program in place. According to the Ponemon Institute, the average cost of a data breach is $3.8 ...
Continue Reading

A Recent, Complex, Ransomware Campaign

Nov 22, 2022 9:39:48 AM By Stu Sjouwerman
Microsoft has observed a threat actor that’s been running a phishing campaign since August 2022. The threat actor, which Microsoft tracks as “DEV-0569,” is using phishing emails to ...
Continue Reading

New Instagram Support Phishing Attack Fakes “Unusual Logon” Experience Well Enough to Fool Victims

Nov 22, 2022 9:36:16 AM By Stu Sjouwerman
Long gone are the days of tacky landing pages that barely impersonate a brand; threat actors are improving their social engineering game well enough to make anyone believe it’s the real ...
Continue Reading

Image-Based Phishing and Phone Scams Continue to Get Past Security Scanners

Nov 22, 2022 9:34:34 AM By Stu Sjouwerman
Using the simplest tactic of not including a single piece of content that can be considered malicious, these types of scams are making their way to inboxes every single time.
Continue Reading

CyberheistNews Vol 12 #47 [Heads Up] Watch Out for This Tricky New Tactic Called Clone Phishing

Nov 22, 2022 9:17:29 AM By Stu Sjouwerman
Continue Reading

World Cup Phishing Attacks Doubled And Will Increase

Nov 21, 2022 4:17:16 PM By Stu Sjouwerman
Researchers at Trellix revealed that phishing email attacks targeting users in the Middle East doubled in October 2022 ahead of the World Cup in Qatar, as reported by The Record. The end ...
Continue Reading

MFA Fatigue Attacks

Nov 21, 2022 4:00:55 PM By Stu Sjouwerman
Researchers at Specops Software describe a technique attackers are using to bypass multi-factor authentication (MFA). In an article for BleepingComputer, the researchers explain that ...
Continue Reading

4 out of 10 Emails are Unwanted as nearly 40% of all Attacks Start with Phishing

Nov 21, 2022 3:59:17 PM By Stu Sjouwerman
New data focused on emails sent through Microsoft 365 highlights the methods used to ensure a successful attack beginning with a malicious email.
Continue Reading

10 Million Health Records from Australian Insurer Medibank are Leaked After Refusing to Pay the Ransom

Nov 21, 2022 1:33:41 PM By Stu Sjouwerman
The aftermath of a ransomware attack last month demonstrates just how bad an attack can get when the cybercriminals don’t get what they want.
Continue Reading

Over One-Third of Companies Who Pay the Ransom are Targeted for a Second Time

Nov 21, 2022 11:33:06 AM By Stu Sjouwerman
Despite the somewhat logical notion that once you’ve paid the ransom, the attack is over, new data shows that paying the ransom doesn’t help you anywhere near how much you think it does.
Continue Reading

Retailers: Credential Harvesting Attacks Are the “Big Thing” This Year for the Holiday Season

Nov 21, 2022 11:31:25 AM By Stu Sjouwerman
New data polled from analysts and members of the retail industry about their security focus is this holiday season reveals the kinds of attacks every organization should be preparing for.
Continue Reading

This New Phishing Kit Flies Under the Radar of Antivirus Software

Nov 21, 2022 11:29:44 AM By Stu Sjouwerman
Akamai researchers have discovered a new phishing campaign that targets United States consumers with fake holiday offers, TechRadar reports. Fake landing pages created by threat actors ...
Continue Reading

Phishing Attacks Misuse Microsoft Dynamics 365 Customer Voice Functionality to Hide Malicious Links

Nov 17, 2022 1:41:23 PM By Stu Sjouwerman
Leveraging a legitimate feature of Dynamics 365, threat actors are able to obfuscate the malicious nature of the email within content that naturally requires user interaction.
Continue Reading

Valid Accounts Rank as the Top Initial Access Infection Vector, Putting a Spotlight on Credentials

Nov 17, 2022 1:41:19 PM By Stu Sjouwerman
As ransomware, business email compromise, and phishing attacks continue to escalate, new data sheds light on where organizations need to focus to help put a stop to attack success.
Continue Reading

Ransomware Attacks on UK Organizations are Not Being Reported Enough, Clouding Impact

Nov 17, 2022 1:41:16 PM By Stu Sjouwerman
A new report from the UK’s National Cyber Security Center highlights the current state of threats in the UK, with particular focus on ransomware attacks and their impact.
Continue Reading

Cyber Insurance Rates Begin to Stabilize as Insurers Gain Better Insight into Cyberattacks

Nov 17, 2022 1:41:12 PM By Stu Sjouwerman
The latest data shows that historically massive rate increases seen over the last few years are beginning to come down, primarily due to insurers having a solid understanding of the risk.
Continue Reading

Watch Out For This Tricky New Tactic Called Clone Phishing

Nov 17, 2022 8:49:53 AM By Stu Sjouwerman
Researchers at Vade Secure describe a type of phishing attack dubbed “clone phishing,” in which attackers follow up a legitimate email from a trusted sender with a replica, claiming that ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews