Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Stu Sjouwerman

Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Find all of Stu's books on Amazon

Recent Posts

Social Engineering Campaign against African Banks

Apr 18, 2022 9:40:04 AM By Stu Sjouwerman
A phishing campaign is targeting African banks with a technique called “HTML smuggling” to bypass security filters, according to threat researchers at HP.
Continue Reading

“Being Annoying” as a Social Engineering Approach

Apr 18, 2022 8:42:15 AM By Stu Sjouwerman
Attackers are spamming multifactor authentication (MFA) prompts in an attempt to irritate users into approving the login, Ars Technica reports. Both criminal and nation-state actors are ...
Continue Reading

Q1 2022 Report: Holiday-Themed Phishing Emails Entice Employees to Click [INFOGRAPHIC]

Apr 15, 2022 10:49:24 AM By Stu Sjouwerman
KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. We analyze the top categories, general subjects (in both the United States and globally), and 'in the ...
Continue Reading

Small and Medium Businesses Account for Nearly Half of all Ransomware Victim Organizations

Apr 13, 2022 4:44:27 PM By Stu Sjouwerman
As ransomware costs increase, along with the effectiveness and use of extortions, smaller businesses are paying the price, according to new data from Webroot.
Continue Reading

One in Three U.K. Businesses Experience Cyber Attacks Weekly

Apr 13, 2022 4:43:29 PM By Stu Sjouwerman
New data from the U.K. Government’s Cyber Security Breaches Survey 2022 report shows that a material portion of businesses and charities are being attacked and feeling the repercussions.
Continue Reading

Meta Stops Three Cyber Espionage Groups Targeting Critical Industries

Apr 13, 2022 4:43:06 PM By Stu Sjouwerman
Impersonating legitimate companies and using a complex mix of fake personas across Facebook, Telegram, and other platforms, these groups used social engineering to gain network access.
Continue Reading

Smishing Scams Abuse Name of Legitimate Ukrainian Charity

Apr 13, 2022 9:54:14 AM By Stu Sjouwerman
Researchers at Trend Micro have spotted yet another scam taking advantage of the crisis in Ukraine by impersonating a legitimate charity. In this case, the scammers are posing as the ...
Continue Reading

CyberheistNews Vol 12 #15 [Heads Up] Hard-boiled Social Engineering by a Fake "Emergency Data Request"

Apr 12, 2022 9:31:43 AM By Stu Sjouwerman
CyberheistNews Vol 12 #15 | Apr. 12th., 2022 [Heads Up] Hard-boiled Social Engineering by a Fake "Emergency Data Request" Bloomberg has reported that forged "Emergency Data Requests" last ...
Continue Reading

Business Email Compromise (BEC): the Costliest Cybercrime

Apr 12, 2022 8:52:35 AM By Stu Sjouwerman
Organizations in the US lost $2.4 billion to business email compromise (BEC) scams (also known as CEO fraud) last year, according to Alan Suderman at Fortune.
Continue Reading

Microsoft Azure's Static Web Apps Service Becomes the New Home for Phishing Attacks

Apr 11, 2022 3:15:00 PM By Stu Sjouwerman
Taking advantage of the value of a legitimate web service, along with a valid SSL certificate, a new campaign of phishing attack targeting online Microsoft credentials is leveraging Azure.
Continue Reading

KnowBe4 Named a Leader in the Spring 2022 G2 Grid Report for Security Awareness Training

Apr 11, 2022 8:00:00 AM By Stu Sjouwerman
We are thrilled to announce that KnowBe4 has been named a leader in the latest G2 Grid Report that compares Security Awareness Training (SAT) vendors based on user reviews, customer ...
Continue Reading

KnowBe4's PhishER Platform Named a Leader in the Spring 2022 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR)

Apr 8, 2022 9:06:44 AM By Stu Sjouwerman
We are excited to announce that KnowBe4 has been named a leader in the Spring 2022 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the fourth consecutive ...
Continue Reading

[On-Demand] The Ransomware Hostage Rescue Checklist: Your Step-by-Step Guide to Preventing and Surviving an Ransomware Attack

Apr 8, 2022 8:30:51 AM By Stu Sjouwerman
Skyrocketing attack rates, double and triple extortion, increasing ransom demands… cybercriminals are inflicting pain in every way imaginable when it comes to today’s ransomware attacks. ...
Continue Reading

Phishbait Invokes Russia's Ministry of Internal Affairs (Road Safety Division)

Apr 7, 2022 8:52:18 AM By Stu Sjouwerman
A phishing campaign impersonating WhatsApp has targeted more than 27,000 mailboxes, according to researchers at Armorblox. It’s not clear who the attackers were, but they used an old ...
Continue Reading

“Human Error” Ranked as the Top Cybersecurity Threat While Budgets Remain Misaligned

Apr 7, 2022 8:28:50 AM By Stu Sjouwerman
New insights into the state of data security show a clear focus on the weakest part of your security stance – your users – and organizations doing little to address it.
Continue Reading

Multi-Million Dollar Scam Call Center Shut Down by Multinational Police Efforts

Apr 7, 2022 8:28:16 AM By Stu Sjouwerman
Last month, Latvian and Lithuanian police – in conjunction with Europol – coordinated a raid on 3 call centers responsible for an international effort to defraud victims worldwide.
Continue Reading

Mailchimp Phishing Attack Results in Potential Hit on 100K Trezor Crypto Wallets

Apr 6, 2022 9:32:36 AM By Stu Sjouwerman
Stolen client data from Mailchimp put customers of the cryptocurrency hardware wallets on notice of potential social engineering attacks claiming to be Trezor.
Continue Reading

“Europol Calling” (Not Necessarily)

Apr 6, 2022 8:55:09 AM By Stu Sjouwerman
Scammers are impersonating Europol with fraudulent phone calls in an attempt to steal personal and financial information, according to Kristina Ohr at Avast. The German Federal Criminal ...
Continue Reading

Microsoft Warns of Lapsus$ “Targeting Organizations for Data Exfiltration and Destruction”

Apr 5, 2022 2:38:15 PM By Stu Sjouwerman
The group behind the recent attacks on Okta, NVIDIA, and Microsoft may be moving on to less-prominent organizations, using their data destruction extortion model on new victims.
Continue Reading

Info Stealer Malware Vidar Uses Microsoft Help Files to Launch Attacks

Apr 5, 2022 2:37:54 PM By Stu Sjouwerman
It appears that the use of Microsoft CHM files is gaining popularity, and from the way this latest attack works, it’s a rather ingenious and flexible method that could become more ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews