Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Beware the Tax Trap: Seasonal Urgency Drives a Spike in Tax-Related Phishing Scams

Apr 10, 2025 3:05:03 PM By KnowBe4 Threat Lab
Cybercriminals are quick to exploit seasonal events — and tax season is no exception. It’s a yearly honeypot for cybercriminals, who take advantage of heightened stress, tight deadlines, ...
Continue Reading

Shadow AI: A New Insider Risk for Cybersecurity Teams to Tackle Now

Apr 10, 2025 3:04:40 PM By James McQuiggan
Disclaimer: Don't get me wrong, I love using generative AI daily for research and writing. This is about how other users could be using it when they don't know what they don't know and ...
Continue Reading

64% of Australian Organizations Hit by Ransomware Were Forced to Halt Operations

Apr 10, 2025 3:04:15 PM By Stu Sjouwerman
Illumio’s recent Global Cost of Ransomware Study found that 64% of Australian companies hit by ransomware had to shut down operations as a result.
Continue Reading

Seeing (and Hearing) Isn’t Believing: My SEC Presentation on AI-Driven Scams

Apr 10, 2025 3:03:48 PM By Perry Carpenter
On March 6, I had the opportunity to speak and provide testimony at the SEC Investor Advisory Committee’s panel on Retail Investor Fraud in America—a critical discussion about how AI is ...
Continue Reading

Securing Employee Identities: Expert Tips for Identity Management Day 2025

Apr 10, 2025 10:13:28 AM By Stu Sjouwerman
With this week being Identity Management Day on April 8th, it's the perfect reminder for organizations to focus on protecting their employees' digital identities.
Continue Reading

Russian Threat Actor Launches Spear-Phishing Campaign Against Ukrainians

Apr 10, 2025 10:13:12 AM By Stu Sjouwerman
The Russian threat actor Gamaredon is targeting Ukrainians with spear-phishing documents related to troop movements, according to researchers at Cisco Talos.
Continue Reading

North Korea Expands Its Fraudulent IT Worker Operations

Apr 9, 2025 9:10:47 AM By Stu Sjouwerman
North Korea’s fraudulent employment operations have expanded to hit countries around the world, with a particular focus on Europe, according to researchers at Google’s Threat Intelligence ...
Continue Reading

The Real Deal: How Cybercriminals Exploit Legitimate Domains

Apr 9, 2025 9:09:57 AM By James Dyer
When it comes to secure email gateways (SEGs), the narrative is quite simple. For years, organizations have relied on SEGs as the foundation of their email security.
Continue Reading

CyberheistNews Vol 15 #14 [Heads Up] QR Code Phishing is Getting More Stealthy Fast

Apr 8, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from March 2025

Apr 7, 2025 10:20:24 AM By Stu Sjouwerman
Check out the March updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Upgraded Phishing-as-a-Service Platform Drives a Wave of Smishing Attacks

Apr 7, 2025 10:19:19 AM By Stu Sjouwerman
A phishing-as-a-service (PhaaS) platform dubbed ‘Lucid’ is driving a surge in SMS phishing (smishing) attacks, according to researchers at Prodaft.
Continue Reading

Online Gaming Platform Steam Tops List of Most Imitated Brands For the First Time

Apr 7, 2025 10:18:53 AM By Stu Sjouwerman
Steam was the most impersonated brand in phishing attacks during the first quarter of 2025, according to a new report from Guardio. The researchers note that the gaming platform’s surge ...
Continue Reading

Your KnowBe4 Fresh Content Updates from March 2025

Apr 4, 2025 10:16:15 AM By Stu Sjouwerman
Check out the 58 new pieces of training content added in March, alongside the always fresh content update highlights, new features and events.
Continue Reading

Phishing Attacks Lead to Theft in the Shipping Industry

Apr 3, 2025 1:19:14 PM By Stu Sjouwerman
Phishing attacks are driving a surge in “double brokering” scams in the shipping industry, according to Christian Reilly, Cloudflare’s Field CTO for EMEA.
Continue Reading

[Heads Up] QR Code Phishing is Getting More Stealthy Fast

Apr 3, 2025 1:18:58 PM By Stu Sjouwerman
Attackers are using new tactics in QR code phishing (quishing) attacks, according to researchers at Palo Alto Networks’ Unit 42.
Continue Reading

Malicious Memes: How Cybercriminals Use Humor to Spread Malware

Apr 3, 2025 1:18:35 PM By Erich Kron
Internet memes and viral content have become a universal language of online culture. They're easily shareable, often humorous, and can spread rapidly across various platforms.
Continue Reading

Compliance Plus Library Reaches 800 Pieces of Content

Apr 2, 2025 8:54:10 AM By John Just
It seems like only yesterday that we launched the Compliance Plus training library as a result of customers asking us to address their needs beyond security awareness training.
Continue Reading

The State of NIS2: A Fragmented Implementation Across the EU

Apr 1, 2025 4:40:16 PM By Martin Kraemer
The Network and Information Systems Directive 2022 (NIS2) was designed to strengthen the cybersecurity resilience of critical infrastructure across the European Union. However, while ...
Continue Reading

Exploring the Implications of DORA: A New Global Standard For Financial Cybersecurity

Apr 1, 2025 4:39:51 PM By Javvad Malik
As of January 17, 2025, the Digital Operational Resilience Act (DORA) came into force across all European Union member states, with the crucial aim of strengthening the IT security of ...
Continue Reading

Most Phishing Emails Rely Purely on Social Engineering

Apr 1, 2025 4:39:10 PM By Stu Sjouwerman
99% of phishing emails that reached inboxes last year did not contain malware, according to a new report from Fortra.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews