Human Risk Management Blog

Engineered To Evade: How Phishing Attacks Are Designed To Get Through Your Secure Email Gateway

Getting through secure email gateways (SEGs) is simply the cost of doing business for a cybercriminal. Literally, detection at the perimeter by a SEG is the same as falling at the first ...

CyberheistNews Vol 15 #28 [The $1B Question] Is Your Security Team Ready for AI Prompt Attacks?

AI-Generated Summaries Mistakenly Suggest Phishing Sites

Researchers at Netcraft warn that AI-generated search engine summaries are suggesting phishing sites when users ask them to find legitimate login pages.

Alert: Scattered Spider is Targeting the Aviation Sector

The US FBI and cybersecurity experts are warning that the Scattered Spider extortion gang has shifted its focus to the aviation and transportation sectors, BleepingComputer reports.

AI Attacks Are Coming in a Big Way Now!

AI is going to allow better, faster, and more pervasive attacks.

Psychological Contract Breach and the Power of Security Culture - Research Insights

Employees are expected to behave securely, and the definition of “securely” is often written down in a myriad of security policies. Yet, people do not always comply with security policies ...

CyberheistNews Vol 15 #27 Is Your Human Risk Management Program Really Making a Difference? Measure It Now

What Makes Southeast Asia the “Ground Zero of Cybercrime”?

Author: Bex Bailey Our 2025 Phishing By Industry Benchmarking Report examines why organizations across Asia face some of the highest levels of cybersecurity risk worldwide.

Is your Human Risk Management Program Creating Measurable Change? Find Out with Our Free Program Maturity Assessment

In today's threat landscape, your employees represent both your greatest vulnerability and your strongest defense.

CyberheistNews Vol 15 #26 [My Clicking Time Bomb] What Do I Do About the Repeat Clickers?

Your KnowBe4 Compliance Plus Fresh Content Updates from June 2025

Check out the June updates in Compliance Plus so you can stay on top of featured compliance training content.

US Tech Executives Cite Cyberattacks as Their Top Concern

A new survey has found that 64% of C-Suite executives in cybersecurity or data center roles view data breaches and ransomware attacks as the top threat to companies over the next decade.

Your KnowBe4 Fresh Content Updates from June 2025

Check out the 33 new pieces of training content added in June, alongside the always fresh content update highlights, new features and events.

Warning: Scammers are Targeting WhatsApp Users

Researchers at Bitdefender warn of a wave of social engineering attacks targeting WhatsApp accounts.

What is Human Risk Management?

Cybersecurity has long focused on fortifying networks, securing endpoints and blocking malicious code. Yet one of the most persistent and costly security vulnerabilities isn’t technical — ...

Europol Warns of Social Engineering Attacks

Social engineering remains a primary initial access vector for cybercriminals, according to a new report from Europol.

CyberheistNews Vol 15 #25 Microsoft & KnowBe4 Collab: Strengthen Email Security Through Strategic Integration

A Clicking Time Bomb: What To Do About Repeat Clickers

I recently had several conversations about repeat clickers. First with a Forrester analyst and then, shortly after, at KB4-CON Orlando following a presentation on the subject by Matthew ...

FTC States That Scams Cost U.S. Consumers $158.3 Billion in One Year

I am used to repeating some pretty big numbers when talking about the financial impact of cybercrimes. When you look into the data, it is pretty easy to start talking about tens of ...

Happy 2nd Birthday to Our KnowBe4 Community!

Can it be? Is it true? Two years of KnowBe4 Community!