The Hard Evidence That Phishing Training and Testing Really Works Great

May 31, 2024 2:56:33 PM By Roger Grimes

Security awareness training (SAT) and simulated phishing works to significantly reduce cybersecurity risk. We have the data, customer testimonials and government recommendations to prove ...

91% of Every Ransomware Attack Today Includes Exfiltrating Your Data

May 31, 2024 1:43:03 PM By Stu Sjouwerman

New insight into ransomware attacks show that cyber attacks are a top concern for organizations – with many not aware they were a victim until after the attack.

Your KnowBe4 Fresh Content Updates from May 2024

May 31, 2024 8:00:00 AM By Stu Sjouwerman

Check out the 60 new pieces of training content added in May, alongside the always fresh content update highlights, events and new features.

Cybercriminals Target Hajj Pilgrims

May 29, 2024 2:42:39 PM By Stu Sjouwerman

Criminals are launching a variety of scams targeting Muslims around the world who are planning on making the Hajj pilgrimage to Mecca, according to researchers at Resecurity.

Criminals Abuse Cloud Storage Platforms to Host Phishing Sites

May 29, 2024 2:42:32 PM By Stu Sjouwerman

Threat actors are abusing cloud storage platforms to host phishing sites that can more easily evade detection by security scanners, according to researchers at Enea. Criminals are ...

Threat Actor Void Manticore Uses Cyber Weapon “Wipers” to Destroy Data and Systems

May 29, 2024 2:42:27 PM By Stu Sjouwerman

This Pro-Hamas hacktivist group has updated their payload arsenal to include updated versions of their BiBi Wiper malware, and two new wiper variants.

CyberheistNews Vol 14 #22 [HEADS UP] A Whopping 90% of Attacks Involve Social Engineering

May 29, 2024 9:00:00 AM By Stu Sjouwerman

KnowBe4 Free Tools Now Available On CISA’s Website

May 28, 2024 2:27:07 PM By Roger Grimes

We are big fans of the U.S. Cybersecurity Infrastructure Security Agency (CISA), whose informal slogan of “An organization so committed to security that it’s in our name twice” is a ...

China Threat Actor Targeting African and Caribbean Entities With Spear Phishing Attacks

May 28, 2024 2:27:04 PM By Stu Sjouwerman

The China-aligned threat actor “Sharp Dragon” is launching spear phishing attacks against government entities in African and Caribbean countries, according to researchers at Check Point.

[FedRAMP Phishing Rule]: "Users are the last line of defense and should be tested."

May 28, 2024 8:00:00 AM By Stu Sjouwerman

If you want to sell cloud-based software to the U.S. Government, you need to be FedRAMP authorized. This is what they state in their Program Overview:

CISA Releases Cybersecurity Resources for High-Risk Communities

May 24, 2024 3:43:39 PM By Stu Sjouwerman

Working to ensure all communities within the United States are educated and prepared, the Cybersecurity and Infrastructure Security Agency (CISA) has released a set of tools, services and ...

As Many as 1 in 7 Emails Make it Past Your Email Filters

May 24, 2024 3:42:17 PM By Stu Sjouwerman

Fluctuations in consecutive quarterly reports demonstrates that organizations should be worried that their cyber defenses may not be strong enough to stop phishing attacks.

Secure Your Site: Learn from the Top 10 Cybersecurity Experts of 2024

May 23, 2024 3:35:14 PM By Stu Sjouwerman

Companies have needed a website for the last 25 years at least. But where do you host your site? The techies at HostingAdvice decided to create an extremely thorough real-world review ...

New Research Finds Phishing Scams Targeting Popular PDF Viewer

May 23, 2024 2:40:28 PM By Stu Sjouwerman

Several phishing campaigns are targeting users of the Foxit PDF Reader, according to researchers at Check Point. Foxit is a popular alternative to Adobe Acrobat Reader for viewing PDF ...

From Boredom to Engagement: Gamification in Cybersecurity Awareness

May 23, 2024 2:40:11 PM By Anna Collard

As someone who can barely keep up when my 10-year-old shows me around his Minecraft worlds, I was a bit apprehensive about writing a review of our gamified cybersecurity awareness module. ...

UK Cybersecurity Org Offers Advice for Thwarting BEC Attacks

May 22, 2024 3:18:43 PM By Stu Sjouwerman

The UK’s National Cyber Security Centre (NCSC) has issued guidance to help medium-sized organizations defend themselves against business email compromise (BEC) attacks, especially those ...

Don't Let Criminals Steal Your Summer Fun

May 22, 2024 3:18:33 PM By Javvad Malik

Summer has finally arrived in certain parts of the world, and with it come many exciting events — from the grandeur of the Olympics to the grass courts of Wimbledon, from the electrifying ...

Malicious Use of Generative AI Large Language Models Now Comes in Multiple Flavors

May 22, 2024 3:18:20 PM By Stu Sjouwerman

Analysis of malicious large language model (LLM) offerings on the dark web uncovers wide variation in service quality, methodology and value – with some being downright scams.

Announcing KnowBe4 Student Edition: Cybersecurity Education Tailored for the Next Generation

May 22, 2024 8:00:00 AM By John Just

I recently heard another heartbreaking story of students who were scammed out of financial aid by a phishing attack. We have also heard stories of employment scams and social media based ...

The Shadow War: Cognitive Warfare and the Politics of Disinformation

May 21, 2024 4:42:21 PM By Stu Sjouwerman

For better or for worse, we live in a world that is an anarchy of nations. Over the last few decades, warfare has transcended traditional battlefields. We may already be experiencing a ...

Security Awareness Training Blog

View Topics