KnowBe4

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.

When Russian InfoSec White Hats Go Black

This latest story about one specific cybercriminal group shows how even the most trusted of white-hats can give in to the lure of financial profit, following Evgeniy Bogachev who retired ...
Continue Reading

[Live Webinar] The Quantum Computing Break Is Coming... Will You Be Ready?

  Quantum computing is a game-changer and will have a huge impact on the way we do business, safeguard data, explore space, and even predict weather events. Yet, some experts say in the ...
Continue Reading

The Fundamental Importance of Choice and Variety in Security Awareness Program Content

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer. I’m a bit of an oddball when it comes to the security awareness market in that I’ve seen it from virtually every ...
Continue Reading

You're Invited To Participate In The Inaugural 2018 Security Awareness Training Deployment Trends and Usage Survey.

KnowBe4 is running its Inaugural 2018 Security Awareness Training Deployment Trends and Usage Survey.
Continue Reading

Finally, KnowBe4 Was Spoofed By Bad Guys. Expected That For Years.

When you become the worldwide No.1 player in your field with tens of thousands of organizations using your platform, you get on people's radar. Both the good guys and the bad apples.
Continue Reading

Size Still Doesn’t Matter Especially When It Comes To CEO Fraud

Lloyds Bank says that Business Email Compromise (BEC)—also known as CEO Fraud—rose by 58% in the UK over the past year. While BEC is often associated by the media with large firms, ...
Continue Reading

Campaign Email Security "as Bad as 2016"

The founder of Tech Solidarity, a not-for-profit interested in helping the campaigns of progressive Democrats, has been talking to those campaigns about their email security. He's found ...
Continue Reading

Is Your Incident Response to Cyber Attacks Useless?

A new report from Carbon Black sheds some light on exactly what cybercriminals are doing, and why traditional incident response is unprepared at best.
Continue Reading

Advanced Malware Targets the Telecom Sector And Bypasses Antivirus

The telecommunication service industry is experiencing more advanced malware threats than any other industry group. Researchers at Lastline discovered that ninety percent of malware ...
Continue Reading

NY Cyber Law Hits 3rd Deadline: Toughest Yet to Come, How To Get And Stay Compliant?

Craig A. Newman, partner at Patterson Belknap wrote: "By today, financial institutions are required to meet their next deadline for compliance with New York’s cybersecurity law. The ...
Continue Reading

Well-Known Cybercrime Group Continues Attacks on Banks

The notorious criminal group Cobalt—aka Carnanak—impersonates vendors or partners to gain access to bank networks, with each successful attack taking in as much as €10 Million.
Continue Reading

Email Impersonation aka CEO Fraud Remains on the Rise

With an average of 1 in 6 users receiving email-based impersonation attacks, it spells bad news for organizations.
Continue Reading

Vigilance, Passcodes, and PINs the Best Defense Against SIM Swaps

Attackers are using SIM swaps to take advantage of SMS-based verification. A recent string of Instagram takeovers, a crypto currency scam costing an investor over $23 million in tokens, ...
Continue Reading

Customer Reports: "GSuite Makes Phishing Training Unnecessarily Hard..."

Customers report to KnowBe4 that they have issues with gmail and their security awareness training program.
Continue Reading

$1,170 Is How Much You're Worth On The Dark Web:

The Benzinga site had a good short summary of the current price lists for stolen data on the dark web. "According to the Dark Web Market Price Index released by the independent VPN review ...
Continue Reading

Come See Me Speak At The Wall Street Journal Small Business Academy October 16th

Join me at the Wall Street Journal Pro’s Small Business Academy event to equip your business with the skills to manage the mounting risks of cybercrime. They are promoting this event ...
Continue Reading

Mobile Phishing Campaign: Homograph Characters + "Free Flights"

Kacy Zurkus at the InfoSec group had the scoop on a campaign recently reported by Farsight Security involving an internationalized domain name (IDN) "homograph-based" phishing website ...
Continue Reading

Healthcare Organizations are Unprepared Without Cybersecurity Insurance!

With the Healthcare industry as a primary target by cybercriminals, analytics firm FICO’s latest findings indicate Healthcare is simply not ready for the aftermath of a cyberattack.
Continue Reading

One in five employees share their email password with co-workers

Negligent employees remain the number one cause of data breaches at small businesses across America. So why do small businesses continue to struggle with good cyber security practices and ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews