Stu Sjouwerman

Chief Executive Officer & President

Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Books

Cyberheist E-Book

Find all of Stu's books on Amazon

[EYE OPENER] The Ransom Payment is Only 15% of The Total Cost of Ransomware Attacks

Apr 28, 2022 3:25:08 PM By Stu Sjouwerman

As the number of ransomware attacks has increased 24% over the previous year, security researchers estimate the total associated attack costs to be just over 7 times higher.

Criminal Gang Impersonates Russian Government in Phishing Campaign

Apr 28, 2022 8:41:31 AM By Stu Sjouwerman

Researchers at IBM Security X-Force are tracking a financially motivated cybercriminal group called “Hive0117” that’s impersonating a Russian government agency to target users in Eastern ...

CyberheistNews Vol 12 #17 [EYE OPENER] "Being Annoying" as a Social Engineering Tactic

Apr 26, 2022 10:04:10 AM By Stu Sjouwerman

Hacking the Hacker: An Inside Look at the Karakurt Cyber Extortion Group

Apr 26, 2022 9:53:55 AM By Stu Sjouwerman

By breaking into an attack server, security researchers have uncovered new details that show the connection between the Karakurt group and Conti ransomware.

Nearly all Data Breaches in Q1 2022 Were the Result of a Cyber Attack

Apr 26, 2022 9:53:38 AM By Stu Sjouwerman

New data from the Identity Theft Resource Center shows rises in the number of data compromises following 2021’s record-setting year, all stemming from cyber attacks.

Cyber Attacks on the Global Supply Chain Have Increased by 51%

Apr 26, 2022 9:53:19 AM By Stu Sjouwerman

As supply chain vendors become a greater target, the businesses reliant upon them don’t seem to be responding with the appropriate urgency, according to new data.

More_eggs Malware Distributed Via Spear Phishing

Apr 26, 2022 8:49:59 AM By Stu Sjouwerman

Threat actors are sending out the stealthy “more_eggs” malware in spear phishing emails that target hiring managers, according to researchers at eSentire’s Threat Response Unit (TRU).

Community Associations Confront Social Engineering

Apr 25, 2022 8:51:35 AM By Stu Sjouwerman

It’s not just deep-pocketed corporations that prove attractive targets for social engineering. Any organization that holds information that can fetch a good price in the criminal ...

If You Got a “Your Bill Is Paid For” Text, You’re Part of a Massive T-Mobile Texting Scam

Apr 21, 2022 12:26:04 PM By Stu Sjouwerman

The latest scam targeting T-Mobile customers impersonating T-Mobile and focused on collecting your personal data by tempting you with free “gifts”.

LinkedIn is the Most Impersonated Brand in Phishing Attacks

Apr 21, 2022 12:25:45 PM By Stu Sjouwerman

Social media companies, particularly LinkedIn, are now the most impersonated brands in phishing campaigns, researchers at Check Point have found.

New Phishing Attack Targets MetaMask Users for their Crypto Wallet Private Keys

Apr 21, 2022 11:46:04 AM By Stu Sjouwerman

A new phishing campaign impersonates MetaMask, informs victims their cryptocurrency wallets aren’t “verified” and threatens suspension.

UK Information Commissioner: Many Cybersecurity Incidents are “Preventable”

Apr 21, 2022 11:45:27 AM By Stu Sjouwerman

In a recent article about the largest cyberthreats currently facing the UK, John Edwards – the UK’s newly-appointed information commissioner- talks about the need for a security culture ...

Critical: CISA Warns of Potential Attacks on Infrastructure by Russian State-Sponsored and Criminal Cyber Gangs

Apr 21, 2022 10:14:00 AM By Stu Sjouwerman

In a joint multi-country cybersecurity advisory (CSA), governments are warning their respective critical infrastructure organizations to be vigilant against increased malicious cyber ...

TraderTraitor: When States do Social Engineering

Apr 20, 2022 8:49:57 AM By Stu Sjouwerman

North Korea’s Lazarus Group is using social engineering attacks to target users of cryptocurrency, according to a joint advisory from the US FBI, the Cybersecurity and Infrastructure ...

Ransomware Attacks Show Temporary Slowing but are Expected to Increase in 2022 [Graphs]

Apr 19, 2022 10:33:27 AM By Stu Sjouwerman

New data from Recorded Future shows how the war in Ukraine is causing a brief slowdown of ransomware attacks on healthcare, governments and schools that is predicted to return to growing ...

Only Half of All Organizations Have Refreshed Their Security Strategy Based on the Pandemic

Apr 19, 2022 10:31:40 AM By Stu Sjouwerman

A new study published by Ponemon Institute shows that a material portion of organizations are still using pre-pandemic security processes and policies, putting the org at risk.

FBI Warns of Bank Fraud Smishing Campaign

Apr 19, 2022 10:31:22 AM By Stu Sjouwerman

The FBI has warned of a smishing campaign that’s targeting people in the US with phony bank fraud notifications. The text messages inform users that someone has attempted to initiate a ...

CyberheistNews Vol 12 #16 [Eye Opener] The Costliest Cybercrime: Business Email Compromise (BEC)

Apr 19, 2022 9:57:22 AM By Stu Sjouwerman

Social Engineering Campaign against African Banks

Apr 18, 2022 9:40:04 AM By Stu Sjouwerman

A phishing campaign is targeting African banks with a technique called “HTML smuggling” to bypass security filters, according to threat researchers at HP.

“Being Annoying” as a Social Engineering Approach

Apr 18, 2022 8:42:15 AM By Stu Sjouwerman

Attackers are spamming multifactor authentication (MFA) prompts in an attempt to irritate users into approving the login, Ars Technica reports. Both criminal and nation-state actors are ...

Security Awareness Training Blog

View Topics