KnowBe4

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Phishing Attack Compromises Spanish Defense Intranet By Foreign State

Reuters reported that a "computer virus" infected the Spanish Defense Ministry’s intranet this month with the aim of stealing high tech military secrets, El País newspaper said on ...
Continue Reading

Norsk Hydro May Have Lost $40M in First Week After Ransomware Infection

Norwegian aluminum giant Norsk Hydro estimates that it may have lost more than $40 million in the first week following the ransomware attack that disrupted its operations.
Continue Reading

Canadian Companies See Increases in Attacks, Breaches, and Sophistication in the Last 12 Months

If you read the latest Canadian Threat Report from Carbon Black, the Canadians have it bad… really bad. With increases across the board, Canadian organizations are needing to step up ...
Continue Reading

[NEW FEATURE] Upload Your Own Training Content

You asked, we listened! To simplify how you roll out and manage different training programs for your users, you can now use the KnowBe4 security awareness training platform for your ...
Continue Reading

How LockerGoga, The Ransomware Crippling Industrial Firms Operates

Technically, LockerGoga is just another ransomware strain and not even a very good one. It's got bugs and it's slow. However, the gang behind it represents a dangerous combination of ...
Continue Reading

U.S. Healthcare Employee Engagement with Simulated Phishing Emails Drop by 67% With Repeated Exposure

A long-term phishing study involving 6 healthcare institutions shows employees are vulnerable to phishing attacks, and that they can become more vigilant through exposure.
Continue Reading

Kevin Mitnick Demos Password Hack: No Link Click or Attachments Necessary

In this shocking demonstration Kevin Mitnick, KnowBe4's Chief Hacking Officer, shows how hackers can steal a user’s password hash without the user having to click a hyperlink or open an ...
Continue Reading

Mandatory vs. Elective Security Awareness Training

  I frequently get variations of the following question: "I met with the CISO yesterday to discuss Awareness Training. He asked if KnowBe4's CEO would comment on the value of mandatory ...
Continue Reading

[Heads-up] This Evil New Child Porn Phishing Attack Could Absolutely Ruin Your Life

Oh my. Bad guys have come up with a sinister new strain of blackmail/sextortion. Just when you thought things couldn't get worse, the bad guys sink lower.  Eric Howes, KnowBe4's Principal ...
Continue Reading

Ransomware Forces Two Chemical Companies to Order ‘Hundreds of New Computers’

Motherboard reported: "It appears that LockerGoga, the same ransomware that hit aluminum manufacturing giant Norsk Hydro this week, also infected American chemicals companies Hexion and ...
Continue Reading

[NEW BOOK!] Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors

Knowbe4's very own Chief Evangelist Strategy Officer Perry Carpenter has written a brand new book! I recommend you pre-order at Amazon, here is the blurb from the new page promoting the ...
Continue Reading

U.S. Universities are the Target of Chinese Hackers Seeking Undersea Military Secrets

Schools like MIT and the University of Hawaii are the focus of Chinese hackers looking for research hubs or field experts at universities tied to Navy programs.
Continue Reading

Cyber Attacks on Financial Institutions are the Modern-Day Bank Robbery

The financial sector has long been a target of cyber thieves. But despite their robust security postures, they continue to be the focus of some of the most innovative attack campaigns.
Continue Reading

UK’s Police Federation Hit By Ransomware

The U.K.’s Police Federation has confirmed it has been hit by a cyberattack. The union-like organization, representing 119,000 police officers across the 43 forces in England and Wales, ...
Continue Reading

WOW, Phishing Attacks Are Now More Common Than Malware!

Microsoft’s security team is uniquely positioned to analyze trends in cyber security threats. Their frequent Security Intelligence Reports (SIR) are an excellent indicator of these ...
Continue Reading

Beazley Data Reveals A 133% Increase In Business Email Compromise Incidents From 2017 To 2018

Business email compromises (BEC) accounted for 24% of the overall number of incidents reported to Beazley Breach Response (BBR) Services in 2018, compared to 13% in 2017, according to a ...
Continue Reading

Bots Impersonate Organizations to Spread Disinformation

Four congressmen have written to the FBI to request an investigation into social media accounts that are impersonating veterans’ organizations in order to spread fake news, according to ...
Continue Reading

[Heads-up] Bad Guys Are Moving To Mobile Phishing for Gift Cards Scams

Scammers are shifting to SMS to carry out business email compromise (BEC) attacks, since text messaging offers less visibility to the victim and more flexibility to the attacker, says ...
Continue Reading

Another Major Hack Of Singapore Government By Russian Cyber Criminals

SINGAPORE Straits Times reported that e-mail log-in information of employees in several government agencies and educational institutions, as well as details of more than 19,000 ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews