KnowBe4

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks..

Proposed N.C. Bill Would Require Ransomware Disclosures

North Carolina Attorney General Josh Stein released a report on Thursday that highlights the impact of data breaches on the state in 2018, and paired the report with a bipartisan bill to ...
Continue Reading

Ransomware Attack Makes Government Offices in Del Rio, Texas Resort to Pen and Paper

This latest ransomware attack demonstrates how an entire network can be taken down, bringing operations to a screeching halt.
Continue Reading

BenefitMall Hit by Months-Long Data Breach

The Dallas-based payroll firm BenefitMall announced on January 4 that nearly 112,000 customers may have had their personal information exposed during a four-month long data breach. The ...
Continue Reading

The U.S. Government Blaming Cyber Attacks on Russia May Cost One Business $100 Million

Governments attributing cyberattacks to specific countries usually ends in nothing more than a line in a news story. But sometimes these kinds of claims can have unforeseen consequences.
Continue Reading

[Heads-up] Are Any Of Your Users Exposed In This Brand New Humongous Data Breach?

Troy Hunt, the site admin of Have I Been Pwned just released some disconcerting news. A new data breach of humongous proportions has just been made public, we are talking astronomical ...
Continue Reading

What Does KnowBe4 Think About Link Re-writing?

This is a question that was asked by a customer who was implementing our Phish Alert Button so that employees could report phishy emails.
Continue Reading

Modern Ransomware Goes After Data Backups

Ransomware is using a variety of methods to reduce or nullify the effectiveness of data backups, writes Maria Korolov at CSO. Restoring from a backup is one of the best strategies that ...
Continue Reading

The Top 10 Big Risk Picture From Way High Up

What keeps you up at night? These are the biggest risks facing our world in 2019. Top world leaders were surveyed for the latest edition of the World Economic Forum's Global Risks Report. ...
Continue Reading

Increase in Office 365 Attacks and Data Breaches Should Be Expected as We Approach the 2019 Tax Season

Experts warn of uptick in phishing attacks against businesses leveraging Office 365 as the tax season begins, tensions run high, and opportunities to trick off-guard users will be plenty.
Continue Reading

[THIS IS NOT A DRILL] KB4 Training Template Used As Phishing In The Wild

It's a known fact that once your market share is big enough, the bad guys are going after you. Used to be that viruses and malware were only developed for Windows, but when Apple got to ...
Continue Reading

It Only Takes 1 Phish: Wichita State University Employees Get Fooled Into Losing Their Paychecks

Three employees of the university fell prey to a common scam asking for their credentials, giving cybercriminals access to change banking details.
Continue Reading

Brand-New Tool: Password Exposure Test Identifies Risky Users

The bad guys are constantly coming out with new ways to hack into your network and steal your organization’s confidential information.
Continue Reading

Awareness Training is the Key to a Culture of Security

Here’s a follow-up to an earlier post of ours, with amplification of points well-worth making.
Continue Reading

Scam Of The Week: "When Users Add Their Names to a Wall of Shame"

Eric Howes, KnowBe4 Principal Lab Researcher, found out about another insidious bad guy trick: "If you work in IT there has undoubtedly come a dark moment when you wondered to yourself ...
Continue Reading

Your Boss NEEDS To Read This WSJ Article About Our Power Grid And How The Russians Hacked It With Phishing

In a Jan 10, 2019 article, the Wall Street Journal reconstructed the worst known hack into the USA's power grid revealing attacks on hundreds of small contractors.
Continue Reading

Email Security Gap Analysis: Survey Finds Phishing Is The No. 1 Attack That Worries IT Pros Most

There are a few companies that frequently report on so-called "email security gap analysis" numbers: Mimecast, Proofpoint and Cyren. They are all IT security companies that have email ...
Continue Reading

Finra punishes former Schwab broker for lying about role in $800,000 CEO Fraud scam

A former broker for Charles Schwab & Co.was fined $5,000 and suspended for 90 days by Finra for lying to Schwab about a CEO Fraud attack in which he wired nearly $800,000 to someone ...
Continue Reading

New Data Suggests that Negligent Employees May Be the Reason Data Breaches are So Successful

When it comes to root causes of data breaches, it’s not your firewall, your endpoint protection, your antivirus, nor your patching that’s failing you; it’s your employees.
Continue Reading

Banking Cyber Heists Celebrate Their 25th Birthday!

2019 marks the 25th anniversary of the very first cyber-heist, netting one of the first cybercriminals $10 million from Citibank. The tactics have changed, but the target hasn’t.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews