Microsoft Kills Password Expiration Policy Recommendation with Latest Security Baseline for Windows 10

Jul 1, 2019 8:28:52 AM By Stu Sjouwerman

This change from Microsoft highlights the need for organizations to readdress the user-based insecurity of passwords caused by password expirations.

KnowBe4 Fresh Content and Feature Updates - June 2019

Jun 28, 2019 10:24:07 AM By Stu Sjouwerman

Check out the content and feature updates in the KnowBe4 platform for the month of June!

Which Of The Four Types of Social Engineering Is The Most Damaging?

Jun 27, 2019 11:38:43 AM By Stu Sjouwerman

Cybercriminals know that targeted social engineering attacks lead to the highest payoffs, so the frequency and sophistication of these attacks is guaranteed to increase, writes Jasmine ...

1.5 Billion Gmail Calendar Users are the Target of a Crafty New Phishing Scam

Jun 26, 2019 2:34:43 PM By Stu Sjouwerman

Users of Google’s Calendar app are being warned about a scam that takes advantage of the popularity of the free service and its ability to schedule meetings easily.

No, Mr. McAfee is Not Giving Away Money

Jun 25, 2019 7:07:42 AM By Stu Sjouwerman

Cryptocurrency giveaway scams are making a comeback, with fraudsters posing as John McAfee, Elon Musk, and the Tesla company, BleepingComputer reports.

Chinese Hackers Infiltrate Global Telecom Networks With Spear Phishing

Jun 25, 2019 6:59:27 AM By Stu Sjouwerman

The WSJ revealed a brazen hack by Chinese state-sponsored bad actors who totally owned more than 10 global telecom networks, and had full admin access to their networks. They were able to ...

"Elaborate" Identity Takeover Fraud Hits Australian Businesses

Jun 24, 2019 3:08:02 PM By Stu Sjouwerman

A new procurement scam has netted at least $1.5 million from Australian companies in New South Wales over the past few weeks, according to 10 daily. The scammers are posing as ...

[NEW FEATURE] KnowBe4 User Event API Helps You Tailor Security Awareness Training Based on Custom User Risk Events

Jun 24, 2019 10:14:37 AM By Stu Sjouwerman

You already know the importance of frequent year-round simulated phishing attacks and security awareness training for your users to help you build a more resilient and secure ...

CyberheistNews Vol 9 #26 [Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

Jun 24, 2019 9:47:30 AM By Stu Sjouwerman

CyberheistNews Vol 9 #26 [Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs The tension in the Middle-East apparently prompted a ...

Phishing Attacks Go Mobile as Cybercriminals Leverage Push Notifications

Jun 24, 2019 7:07:42 AM By Stu Sjouwerman

Taking advantage of the inherent trust in mobile content, the bad guys are using a mixture of phishing text messages and look-alike sites to trick users into giving up credentials.

[Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

Jun 23, 2019 11:30:59 AM By Stu Sjouwerman

The tension in the Middle-East apparently prompted a game-changing move by the U.S. President. Washington Post sources say exactly 10 years after Stuxnet, the President approved a ...

UK Forensic Crime Labs Shut Down Due To Ransomware Attack

Jun 22, 2019 10:48:19 AM By Stu Sjouwerman

Every police force across England and Wales has been forced to prioritize evidence for forensic testing following a criminal cyber attack affecting one of the primary forensic service ...

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

Jun 22, 2019 10:34:21 AM By Stu Sjouwerman

This blog post has been superseded by a more recent one. You can find this new post here.

Phishing Campaign Impersonates Email Alerts From DHS

Jun 21, 2019 10:26:51 AM By Stu Sjouwerman

An ongoing email-based phishing scam is attempting to fool recipients into opening malicious attachments disguised as notifications from the U.S. Department of Homeland Security (DHS), ...

Why Do Organizations Still Under-report Cybercrime?

Jun 21, 2019 9:48:09 AM By Stu Sjouwerman

It’s estimated that organizations aren’t engaging with Law Enforcement when becoming a victim of a cybercrime in large numbers. We cover 5 reasons why organizations don’t.

New Survey Uncovers Primary Challenges in Creating A Security Culture

Jun 20, 2019 11:18:19 AM By Stu Sjouwerman

New survey data from security vendor nCipher uncovers why organizations are finding it difficult to engage users to participate willingly in security-minded processes and behaviors.

The Fake French Minister In A Silicone Mask Who Stole Millions

Jun 20, 2019 11:04:04 AM By Stu Sjouwerman

Identity theft is said to be the world's fastest-growing crime, but in sheer chutzpah there can be few cons to match the story of the fake French minister and his silicone mask.

Maryland governor signs order to boost cybersecurity after Baltimore ransomware attack

Jun 20, 2019 10:34:50 AM By Stu Sjouwerman

The Hill reported: "Maryland Gov. Larry Hogan (R) on Tuesday signed an executive order aimed at strengthening the state’s cybersecurity capabilities, a month after a debilitating ...

Bogus Emails: 3.4 Billion Are Sent Every Day...

Jun 20, 2019 7:21:24 AM By Stu Sjouwerman

Research from Valimail shows that at least 3.4 billion phony emails are sent every day, Help Net Security reports. Despite this staggering number, most organizations still aren’t ...

How Hackers Emptied Church Coffers with a Phishing Attack and Social Engineering Phone Call

Jun 20, 2019 7:09:18 AM By Stu Sjouwerman

Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.

Security Awareness Training Blog

View Topics