Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

New WhatsApp Scam Uses Call Forwarding Social Engineering to Hijack Accounts

Jul 7, 2022 9:01:00 AM By Stu Sjouwerman

This is a great example of how even the simplest of social engineering tactics can be used as the first step in a likely-larger scam. In a recent short post on LinkedIn, Rahul Sasi, CEO ...

New Phishing Campaign is Targeting TrustWallet With Impersonation Emails

Jul 6, 2022 10:53:00 AM By Stu Sjouwerman

Vade Secure warns that a phishing campaign is targeting TrustWallet cryptocurrency wallet users with phony verification emails.

CyberheistNews Vol 12 #27 [New FBI and CISA Alert] This Ransomware Strain Uses RDP Flaws to Hack Into Your Network

Jul 6, 2022 9:06:58 AM By Stu Sjouwerman

Ransomware Gang Creates “User-Friendly” Stolen Data Search Site for Employee Victims

Jul 6, 2022 8:03:22 AM By Stu Sjouwerman

In an interesting extortion twist to get ransomware victims to pay up, one gang has created a search site to allow employees to see if their own private information has been made public.

Phishing Emails Top the List as the Initial Attack Vector for Ransomware Attacks

Jul 6, 2022 8:03:07 AM By Stu Sjouwerman

The latest data on ransomware trends from backup vendor Veeam demonstrate the impact these attacks have on backups and an organization’s ability to recover.

Email-Based Threats Double as Malware, Credential Phishing, and BEC Detections Increase

Jul 6, 2022 8:02:51 AM By Stu Sjouwerman

Newly released data from TrendMicro about high-risk email threats in 2021 shows where cybercriminals are placing their focus and where yours should be as well.

[FREE Resource Kit] July Is Ransomware Awareness Month

Jul 5, 2022 4:04:37 PM By Stu Sjouwerman

July is Ransomware Awareness Month, and we’ve got you covered with free resources!

New Phishing Campaign Impersonates Canada Revenue Agency

Jul 5, 2022 12:10:24 PM By Stu Sjouwerman

A phishing campaign is impersonating the Canada Revenue Agency (CRA) in an attempt to steal Canadians’ personal information, according to Rene Holt at ESET. The phishing emails inform ...

[New FBI and CISA Alert] This ransomware strain uses RDP flaws to hack into your network

Jul 1, 2022 6:47:10 AM By Stu Sjouwerman

As of May 2022, MedusaLocker has been observed predominantly exploiting vulnerable Remote Desktop Protocol (RDP) configurations to access victims' networks, according to a new joint ...

[Heads Up] Online Fraud Now Sky-high With 'Tinder Swindler' Romance Scams Costing Hundreds of Millions

Jun 30, 2022 10:19:27 AM By Stu Sjouwerman

A new article in Bloomberg focused on new sky-high online fraud numbers, they are horrendous. Here is a short summary and I recommend you read the whole article.

Wars and Lechery, Nothing Else Holds Fashion for Phishing Attacks

Jun 29, 2022 10:03:52 AM By Stu Sjouwerman

Shakespeare said it first, and things haven’t changed: suffering and desire continue to drive victims to the social engineers. Researchers at Bitdefender have observed a phishing campaign ...

Bad News to Ransom Payers: 80% of You Will Face a Second Attack Within 30 Days

Jun 29, 2022 9:27:04 AM By Stu Sjouwerman

New insight into what happens during and after a ransomware attack paints a rather dismal picture of what to expect from attackers, your executives, and your operations.

80% of Organizations Await “Inevitable” Negative Consequences From Email-Born Cyberattacks

Jun 29, 2022 9:26:57 AM By Stu Sjouwerman

With nearly every organization experiencing some form of phishing attack, new data suggests these attacks are improving in sophistication, effectiveness, and impact.

New Evasive Phishing Techniques Help Cybercriminals Launch “Untraceable” Campaigns

Jun 29, 2022 9:26:51 AM By Stu Sjouwerman

Scary new details emerge of cybercriminals using reverse tunneling and URL shorteners to evade detection by security solutions, allowing them to take victims for their credentials and ...

FBI Warns of Deepfakes Used to Apply for Remote Jobs

Jun 29, 2022 9:15:30 AM By Stu Sjouwerman

If you're looking for your company's next remote IT position, you may want to think twice before doing so. The FBI recently reported to the Internet Complaint Center today that there are ...

CyberheistNews Vol 12 #26 [Heads Up] The FBI Warns That LinkedIn Fraudsters Are Now a Significant Threat

Jun 28, 2022 9:04:02 AM By Stu Sjouwerman

MetaMask Crypto Wallet Phishing

Jun 27, 2022 9:56:17 AM By Stu Sjouwerman

A phishing campaign is attempting to steal credentials for MetaMask cryptocurrency wallets, according to Lauryn Cash at Armorblox.

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

Jun 23, 2022 11:21:31 AM By Stu Sjouwerman

Rather than run a complex credential harvesting phishing scam, attackers use existing information about their victim and hijack a popular web service account *before* it’s created.

“Failure to Authenticate” Wire Transaction at the Heart of a Cyber Insurance Appeal Case

Jun 23, 2022 11:21:24 AM By Stu Sjouwerman

Lawsuits over denied cyber insurance claims provide insight into what you should and shouldn’t expect from your policy – and that actions by your own users may make the difference.

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Jun 23, 2022 11:21:18 AM By Stu Sjouwerman

The free and unmonitored webpage publishing platform has been identified as being used in phishing scams dating back as early as mid-2019, as a key part to bypass security solutions.

Security Awareness Training Blog

View Topics