Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Human Risk Management Blog

Keeping you informed. Keeping you aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Jan 28, 2026 2:30:00 PM By KnowBe4 Team

KnowBe4 Urges Action: Take Control of Your Data this Data Privacy Week

With organizations collecting and storing massive amounts of personal data these days, much of which people share freely, we need to become better at protecting data on both the storing ...

Jan 27, 2026 9:00:01 AM By KnowBe4 Team

CyberheistNews Vol 16 #04 The Skeleton Key: How Attackers Weaponize Trusted RMM Tools for Backdoor Access

Jan 23, 2026 2:00:00 PM By KnowBe4 Team

Warning: “Fancy” QR Codes Are Making Quishing More Dangerous

Scammers are increasingly using visually stylized QR codes to deliver phishing links, Help Net Security reports. QR code phishing (quishing) is already more difficult to detect, since ...

Jan 23, 2026 8:00:00 AM By KnowBe4 Team

Report: 4 in 10 Employees Have Never Received Cybersecurity Training

Forty percent of employees have never received cybersecurity training, according to a new report from Yubico. That number rises to nearly sixty percent for employees working for small ...

Jan 22, 2026 4:00:00 PM By KnowBe4 Team

New Phishing Campaign Spreads Via LinkedIn Comments

A widespread phishing campaign is targeting LinkedIn users by posting comments on users’ posts, BleepingComputer reports. Threat actors are using bots to post the comments, which ...

Jan 22, 2026 11:00:05 AM By John Just

AI Literacy Training: From Best Practice to Legal Requirement Under the New EU AI Act

For those of you who are like me, when I first heard about the new EU AI Act, I had flashbacks to the implementation of the General Data Protection Act (GDPR) back in 2018. There are ...

Jan 22, 2026 8:00:00 AM By KnowBe4 Threat Lab

The Skeleton Key: How Attackers Weaponize Trusted RMM Tools for Backdoor Access

Lead Analysts: Jeewan Singh Jalal, Prabhakaran Ravichandhiran and Anand Bodke KnowBe4 Threat Labs recently examined a sophisticated dual-vector campaign that demonstrates the real-world ...

Jan 21, 2026 3:30:00 PM By KnowBe4 Team

Preventing Data Breaches Before They Happen: Why Outbound Email Security Can't Be Ignored

While organizations invest heavily in stopping threats from entering their networks, a critical vulnerability often goes underprotected: sensitive data leaving the organization through ...

Jan 21, 2026 12:00:00 PM By KnowBe4 Team

AI-Assisted Social Engineering is a Growing Concern

A survey by the World Economic Forum (WEF) found that 47% of organizations cite the advancement of adversarial capabilities as their top concern surrounding generative AI.

Jan 20, 2026 12:00:00 PM By KnowBe4 Team

Report: Scammers Stole $17 Billion Worth of Crypto Last Year

Scammers stole an estimated $17 billion worth of cryptocurrency in 2025, according to a new report from Chainalysis. Notably, the report found that AI-assisted scams stole 4.5 times more ...

Jan 20, 2026 9:00:00 AM By KnowBe4 Team

CyberheistNews Vol 16 #03 [New Scam] AI Deepfakes Religious Leaders to Steal Your Money

Jan 15, 2026 11:45:00 AM By KnowBe4 Team

Threat Actors Exploit Misconfigurations to Spoof Internal Emails

Attackers are increasingly abusing network misconfigurations to send spoofed phishing emails, according to researchers at Microsoft. This technique isn’t new, but Microsoft has observed a ...

Jan 14, 2026 2:00:00 PM By KnowBe4 Team

Report: Microsoft Was the Most Impersonated Brand in Q4 2025

Microsoft was the most commonly impersonated brand in phishing attacks during the fourth quarter of 2025, according to researchers at Guardio. Microsoft was followed by Facebook, Roblox, ...

Jan 14, 2026 9:00:00 AM By KnowBe4 Team

Phishing Campaign Abuses Google’s Infrastructure to Bypass Defenses

Researchers at RavenMail warn that a major phishing campaign targeted more than 3,000 organizations last month, primarily in the manufacturing industry.

Jan 13, 2026 1:00:00 PM By KnowBe4 Team

AI Deepfakes Are Impersonating Religious Figures to Solicit Donations

WIRED reports that deepfake attacks are impersonating pastors and other religious figures in order to scam congregations.

Jan 13, 2026 9:00:00 AM By KnowBe4 Team

CyberheistNews Vol 16 #02 When You Can't Believe Your Eyes: AI and the New Misinformation Playbook

Jan 12, 2026 9:00:00 AM By KnowBe4 Team

Your KnowBe4 Fresh Compliance Plus Content Updates from December 2025

“Gave me good things to consider that I had not thought about as we move forward and AI becomes a part of our work processes!” Mobile-First Module Employees master current cyberthreats — ...

Jan 9, 2026 3:00:00 PM By Roger Grimes

ConsentFix Attacks Fake Cloudflare Prompts

ClickFix attacks have been around for decades; only the name is new. ClickFix attacks use social engineering to trick users into clicking on buttons and links that the user is told are ...

Jan 9, 2026 9:00:00 AM By KnowBe4 Team

Your KnowBe4 Fresh Content Updates from December 2025

“It was really good. I liked that it covered a lot of important subjects, focused on how to spot red flags, and used an AI deepfake demonstration.” Training Module Employees master ...

Jan 8, 2026 11:00:00 AM By KnowBe4 Team

Phishing Campaign Targets WhatsApp Accounts

Researchers at Gen warn that a phishing campaign is attempting to trick users into linking malicious devices to their WhatsApp accounts.

Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest insights, trends and security news. Subscribe to CyberheistNews.