Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

[HEADS UP] Highly Sophisticated Job Offer Scam

Aug 25, 2022 8:55:44 AM By Stu Sjouwerman

If you've been approached by recruiters on LinkedIn for a potential job opportunity, you may want to pay attention to this recent scam.

Dueling Clauses, or, not all Fraud is the Same

Aug 24, 2022 10:47:04 AM By Stu Sjouwerman

There are, famously, three things you can do with risk: accept it, mitigate it, or transfer it. And you transfer risk by buying insurance against it.

[BUDGET AMMO] Companies Are Ditching Cybersecurity Insurance as Premiums Rise, Coverage Shrinks

Aug 24, 2022 8:45:22 AM By Stu Sjouwerman

As the CEO of a public InfoSec company I have a variety of news sources. One of these is called '"The Information" which covers in-depth tech stories usually earlier than anywhere else. ...

Vishing is a Rising Threat to the Enterprise

Aug 23, 2022 10:05:48 AM By Stu Sjouwerman

Most of us are all too familiar with vishing, the scam voice calls that offer to erase your credit card debt, to extend your automobile warranty, to get you to donate to that worthy cause ...

CyberheistNews Vol 12 #34 [Eye Opener] The Cisco Hack Was Caused by Initial Access Broker Phishing

Aug 23, 2022 9:30:00 AM By Stu Sjouwerman

On this Carousell Ride, the Crooks Take the Brass Ring.

Aug 22, 2022 9:14:37 AM By Stu Sjouwerman

In a variation on a recently seen theme in which scammers pose as buyers on e-commerce platforms, victims in Singapore are being taken in by people offering to buy goods from them.

[FREE RESOURCE KIT] Cybersecurity Awareness Month 2022 Now Available

Aug 22, 2022 7:30:00 AM By Stu Sjouwerman

Cybersecurity Awareness Month is right around the corner, and we’ve got you covered! Your complimentary resource kit for 2022 is now available.

[Whoa] Ransomware Strains Almost Double in Six Months from 5,400 to 10,666

Aug 19, 2022 8:57:35 AM By Stu Sjouwerman

A recent report from FortiGuard Labs saw ransomware strains double in total so far compared to 2021, and the year is not over yet.

Piggybacking: Social Engineering for Physical Access

Aug 18, 2022 11:37:37 AM By Stu Sjouwerman

Tailgating or piggybacking is an old but effective social engineering technique to gain physical access to restricted areas, according to Rahul Awati at TechTarget. Tailgating is when a ...

One-Third of Organizations Experience Ransomware Attacks At Least Weekly

Aug 18, 2022 8:17:10 AM By Stu Sjouwerman

New data shows attempted ransomware attacks are occurring far more frequently while a lack of confidence is found in security measures and solutions to stop ransomware attacks.

Impersonation Phishing Attacks Increase as Credentials Take the Lead as the Primary Target

Aug 18, 2022 8:16:56 AM By Stu Sjouwerman

New data shows an upswell of email-based cyberattacks, with over 256 brands being impersonated, as social media, Microsoft, shipping, and ecommerce brands top the list.

Hybrid Vishing Attacks Increase 625% in Q2

Aug 18, 2022 8:16:42 AM By Stu Sjouwerman

Reaching a six-quarter high in Q2, hybrid vishing attacks have increased six times that of the hybrid-vishing attacks experienced in Q1 2021.

Organizations Holding Cyber Insurance Policies May Get Stuck with the Bill in a Phishing Loss

Aug 18, 2022 8:16:28 AM By Stu Sjouwerman

Plenty of new anecdotal and legal case-based stories are demonstrating that just because your organization has a policy doesn’t mean it’s actually going to pay out after an attack.

Social Engineering for Espionage and Influence

Aug 17, 2022 9:20:19 AM By Stu Sjouwerman

Microsoft has disrupted operations carried out by a Russian government-aligned threat actor tracked as “SEABORGIUM.” The threat actor uses phishing and credential harvesting to conduct ...

Children of Conti go Phishing

Aug 16, 2022 11:57:46 AM By Stu Sjouwerman

Researchers at AdvIntel warn that three more ransomware groups have begun using the BazarCall spear phishing technique invented by the Ryuk gang (a threat group that subsequently ...

CyberheistNews Vol 12 #33 [Eye Opener] Recent Cisco Hack by Ransomware Group Started Because of a Phishing Attack

Aug 16, 2022 9:34:25 AM By Stu Sjouwerman

Initial Access Broker Phishing

Aug 15, 2022 9:07:30 AM By Stu Sjouwerman

Cisco has disclosed a security incident that occurred as a result of sophisticated voice phishing attacks that targeted employees, according to researchers at Cisco Talos. The researchers ...

U.S. Government Warns of Increased Texting Scams as Mobile Attacks are Up 100%

Aug 12, 2022 8:47:48 AM By Stu Sjouwerman

Cyberattacks via SMS messaging are on the rise, and are having such an impact, the Federal Communications Commission has released an advisory on Robotext phishing attacks (or smishing).

Massive Network of Over 10,000 Fake Investment Sites Targets Europe

Aug 12, 2022 8:47:44 AM By Stu Sjouwerman

Using a mix of compromised social media accounts, social engineering, call center agents, and some convincing websites, this latest scam seeks to get victims to repeatedly “invest”.

Phishing-as-a-Service Platform “Robin Banks” Helps Cybercriminals Target Customers of Financial Institutions

Aug 11, 2022 9:29:14 AM By Stu Sjouwerman

Initial Access Brokers (IABs) are one of the new breeds of cybercrime services. But this newest PhaaS platform makes it easy for anyone to target banks for as little as $50 monthly.

Security Awareness Training Blog

View Topics