Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

Ransomware Recovery Costs Have Doubled for State and Local Governments

Aug 27, 2024 7:30:00 AM By Stu Sjouwerman

Thirty-four percent of state and local government entities were hit by ransomware in 2024, a new report from Sophos has found. While this is a decrease compared to the attack rate in ...

Business Email Compromise Scams Rise 20%, Making up Nearly Half of all Spam Emails

Aug 23, 2024 3:07:33 PM By Stu Sjouwerman

New research on email threats points to AI-based tools to assist in generating BEC content. And the overwhelming targeted role may or may not surprise you.

The Number of Email-Based Cyber Attacks Detected Surge 239% in 1H 2024

Aug 23, 2024 3:07:30 PM By Stu Sjouwerman

New data shows the most prevalent and obvious path into an organization – email – continues to be exploited by a growing number of cybercriminals.

Malvertising Campaign Impersonates Dozens of Google Products

Aug 23, 2024 8:48:25 AM By Stu Sjouwerman

A malvertising campaign is abusing Google ads to impersonate Google’s entire product line, according to researchers at Malwarebytes. The malicious ads are designed to lure victims into a ...

US Political Campaigns Targeted by Iranian Spear Phishing Attacks

Aug 21, 2024 4:02:10 PM By Stu Sjouwerman

Researchers at Recorded Future’s Insikt Group warn that the Iranian state-sponsored threat actor “GreenCharlie” is launching spear phishing attacks against US political campaigns.

Phishing Scammers Leverage Microsoft Dynamics 365 to Target US Government Contractors

Aug 21, 2024 4:02:07 PM By Stu Sjouwerman

Analysis of a phishing campaign targeting thousands of government contractors, dubbed “Operation Uncle Sam,” takes advantage of some sophisticated steps to avoid detection.

Threat Actors Abuse URL Rewriting to Mask Phishing Links

Aug 21, 2024 2:33:55 PM By Stu Sjouwerman

Threat actors are abusing a technique called “URL rewriting” to hide their phishing links from security filters, according to researchers at Perception Point.

CyberheistNews Vol 14 #34 [HEADS UP] Real Social Engineering Attack on KnowBe4 Employee Foiled

Aug 20, 2024 9:00:00 AM By Stu Sjouwerman

U.K. Management Almost Twice as Likely to Fall for Phishing Attacks Versus Entry-Level Employees

Aug 19, 2024 1:58:47 PM By Stu Sjouwerman

Highlights from a new survey focused on employee compliance reveals just how targeted and susceptible U.K. businesses are to phishing attempts.

Ransomware Group Known as ‘Royal’ Rebrands as BlackSuit and Is Leveraging New Attack Methods

Aug 19, 2024 8:34:46 AM By Stu Sjouwerman

The ransomware threat group formerly known as "Royal" has rebranded itself as BlackSuit and updated their attack methods, warns the FBI.

File-Sharing Phishing Attacks Increased by 350% Over the Past Year

Aug 15, 2024 12:28:38 PM By Stu Sjouwerman

File-sharing phishing attacks have skyrocketed over the past year, according to a new report from Abnormal Security.

Ransomware Payments Decline While Data Exfiltration Payments Are On The Rise

Aug 15, 2024 12:28:35 PM By Stu Sjouwerman

The latest data from Coveware shows a slowing of attack efficacy, a decrease in ransom payments being made, and a shift in initial access tactics.

Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Aug 15, 2024 10:55:02 AM By Stu Sjouwerman

Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites.

Employment Scams Continue to Target Job Seekers Via Phony Employment Offers

Aug 15, 2024 10:54:59 AM By Stu Sjouwerman

Threat actors continue to target job seekers with phony employment offers on job search platforms like Indeed, researchers at Bitdefender warn.

Real Social Engineering Attack on KnowBe4 Employee Foiled

Aug 14, 2024 8:38:02 AM By Stu Sjouwerman

DavidB, the KnowBe4 VP of Asia Pacific and Japan, recently experienced a sophisticated social engineering attack via WhatsApp.

Reflecting on KnowBe4's 5th Consecutive TrustRadius Tech Cares Award

Aug 13, 2024 1:54:39 PM By Stu Sjouwerman

For the fifth year in a row, we've been honored with the TrustRadius Tech Cares Award! This recognition is a testament to our unwavering commitment to corporate social responsibility ...

Chameleon Malware Poses as CRM App

Aug 13, 2024 1:54:29 PM By Stu Sjouwerman

Researchers at ThreatFabric warn that a phishing campaign is distributing the Chameleon Android malware by impersonating a Customer Relationship Management (CRM) app. The campaign is ...

CyberheistNews Vol 14 #33 Your Users Still Fall For Phishing Attacks Because of URL Shorteners

Aug 13, 2024 9:00:00 AM By Stu Sjouwerman

Attackers Abuse Google Drawings to Host Phishing Pages

Aug 13, 2024 8:30:00 AM By Stu Sjouwerman

Researchers at Menlo Security warn that a phishing campaign is exploiting Google Drawings to evade security filters.

[FREE RESOURCE KIT] 2024 Cybersecurity Awareness Month Kit Now Available

Aug 13, 2024 8:00:00 AM By Stu Sjouwerman

Cyber risks abound, inside and out. Threats to your organization can come in many forms; from a suspicious email with a dodgy attachment to improperly stored sensitive information.

Security Awareness Training Blog

View Topics