Human Risk Management Blog

New Phishing Campaign Uses AI Tools to Evade Detection

Microsoft warns that a recent phishing campaign used AI technology to obfuscate its payload and evade security filters.

CyberheistNews Vol 15 #40 The Behavioral Science When Your Best People Are Click Magnets

Security Leaders Cite AI-Driven Phishing Attacks as a Top Concern

A new report has found that nearly 40% of security leaders believe their organizations are least prepared for phishing and other social engineering attacks, Help Net Security reports.

[Cybersecurity Awareness Month] Watch Out for the Cyberpunks: Outsmarting Social Engineering in Retro Arcade Style

October marks Cybersecurity Awareness Month, a perfect reminder that while technology evolves, the greatest threat to organizations often comes down to the human element.

Your KnowBe4 Compliance Plus Fresh Content Updates from September 2025

Check out the September updates in Compliance Plus so you can stay on top of featured compliance training content.

The DEEP Matrix: Your Map to a Unified Defense

Welcome back. We have our DEEP framework which was explored in the previous blog post, and discussed in depth in our most recent human risk management (HRM) whitepaper, but a framework is ...

North Korean Hackers Target Job Seekers With Social Engineering Tricks

A North Korean threat actor dubbed “DeceptiveDevelopment” is using various social engineering techniques to target job seekers, according to researchers at ESET.

Report: Deepfake Attacks Have Targeted Nearly Two-Thirds of Organizations

A survey by Gartner found that 62% of organizations have been hit by a deepfake attack in the past twelve months, Infosecurity Magazine reports.

Your KnowBe4 Fresh Content Updates from September 2025

Check out the 44 new pieces of training content added in September, alongside the always fresh content update highlights, new features and events.

Why KB4-CON EMEA 2025 Should Be Your Must-Attend Cybersecurity Conference This October

As cyber threats continue to evolve at breakneck speed, staying ahead of the curve isn't just important, it's essential.

Building Trust in AI: KnowBe4's Journey Toward ISO 42001 Certification

At KnowBe4, everything we do is built on a foundation of innovation and trust. As we bring more artificial intelligence (AI) into our human risk management platform, we believe it’s ...

Get Your Game On! 3 Ways to Use the 2025 Cybersecurity Awareness Month Resource Kit

The calendar has flipped into October, so now it’s time to let the Cybersecurity Awareness Month games begin!

Going DEEP: A Simple Framework for a Complex Problem

In our previous blog post, we discussed the behavioral science behind why people click on malicious links.

CyberheistNews Vol 15 #39 [Watch Your Back] Why Your Security Strategy Needs a Human Upgrade Now

The 3 Biggest Email Security Challenges Facing Legal Organizations

Law firms really are under constant pressure to meet tight deadlines, maintain client confidentiality and protect privileged communications.

The Behavioral Science Behind the Click

Welcome back. In our last blog post, we talked about the great divide between tech-focused and people-focused security.

New AI-Driven Phishing Platform Automates Attack Campaigns

Researchers at Varonis warn of a new phishing automation platform called “SpamGPT” that “combines the power of generative AI with a full suite of email campaign tools.”

Attackers Use AI Development Tools to Craft Phony CAPTCHA Pages

Attackers are abusing AI-powered development platforms like Lovable, Netlify and Vercel to create and host captcha challenge websites as part of phishing campaigns, according to ...

Attackers Abuse Google’s AppSheet to Send Phishing Emails

Hackread reports that attackers are abusing Google’s AppSheet platform to send phishing emails.

CyberheistNews Vol 15 #38 Why Does Protecting AI Agents Need To Be Status Quo?