On-Demand Webinar: New 2022 Phishing By Industry Benchmarking Report: How Does Your Organization Measure Up

Aug 3, 2022 11:28:49 AM By Stu Sjouwerman

As a security leader, you have a lot on your plate. Even as you increase your budget for sophisticated security software, your exposure to cybercrime keeps going up. IT security seems to ...

Labor Market Social Engineering: Supply-Side and Demand-Side

Aug 3, 2022 8:50:05 AM By Stu Sjouwerman

We’re accustomed to social engineering being used for credential theft and business email compromise. We’re also accustomed to hearing about the increase in remote work during the ...

New Data Breach Extortion Attack Begins with a Fake Duolingo or MasterClass Subscription Scam

Aug 3, 2022 8:50:01 AM By Stu Sjouwerman

The cybercriminal gang, dubbed ‘Luna Moth’ uses a sophisticated mix of phishing, vishing, remote support sessions, and remote access trojans to gain control of victim endpoints.

Security and Gender: The Gaps Are Not Where You Expect

Aug 2, 2022 2:36:30 PM By Anna Collard

The 2022 KnowBe4 Women’s Day Survey interviewed more than 200 women from across the technology industry in South Africa to find out more about how they perceive the industry, the gender ...

CyberheistNews Vol 12 #31 [Heads Up] Crafty Microsoft USB Scam Shows the Importance of Security Awareness Training

Aug 2, 2022 9:38:15 AM By Stu Sjouwerman

Cyber Insurance Expected to Continue to Rise as Sophistication and Cost of Ransomware Attacks Increase

Aug 2, 2022 9:07:39 AM By Stu Sjouwerman

New data about the state of cyber insurance shows that given the current loss ratios by insurers – and the reasons behind those losses – will result in higher premiums for the foreseeable ...

Experian Customer “Impersonation” Account Takeover Uncovered by KrebsOnSecurity

Aug 2, 2022 9:07:35 AM By Stu Sjouwerman

After a few notifications of a potential problem with Experian by his readership, Brian Krebs and team checked out Experian’s account signup process and found some disturbing news.

A Widespread, Multistage Investment Scam

Aug 1, 2022 8:44:56 AM By Stu Sjouwerman

A complex and ambitious investment scam has used more than 10,000 domains to induce speculators to give up not just funds, but personal information as well. Researchers at security firm ...

Happy 23rd Annual SysAdmin Day from KnowBe4!

Jul 29, 2022 7:30:00 AM By Stu Sjouwerman

It's been 23 years of celebrating all of our fellow System Administrators! Your hard work on daily maintenance of your company's day-to-day computer operations definitely deserves kudos.

Your KnowBe4 Fresh Content Updates from July 2022

Jul 29, 2022 7:00:00 AM By Stu Sjouwerman

Check out the thirteen new pieces of training content added in July, alongside the always fresh content update highlights and new features.

Phishing-Based Data Breaches Take 295 Days to Contain and Breach Costs Soar to $4.91 Million

Jul 28, 2022 12:33:36 PM By Stu Sjouwerman

Fresh data on data breach costs from IBM show phishing, business email compromise, and stolen credentials take the longest to identify and contain.

Beware of Sophisticated Malicious USB Keys

Jul 28, 2022 12:33:33 PM By Roger Grimes

Malicious USB keys have always been a problem. There is almost no professional penetration testing team that does not drop a handful of USB keys outside of any targeted organization and ...

Microsoft 365 Users are Once Again the Target of Phishing Scams using Fake Voice Mail Messages

Jul 28, 2022 9:04:04 AM By Stu Sjouwerman

Using a simple email containing a voice mail attachment, an ingenious phishing attack captures credentials while keeping track of the domains being attacked.

Hackers Use Free Email Accounts from QuickBooks to Launch Spoofed Phishing Attacks

Jul 28, 2022 9:04:00 AM By Stu Sjouwerman

A new attack uses one brand email domain to increase the chances of reaching an Inbox, while spoofing another brand to trick users into transitioning to a vishing attack.

Spear Phishing Campaign Targets Facebook Business Accounts

Jul 28, 2022 9:03:57 AM By Stu Sjouwerman

Researchers at WithSecure have discovered a spear phishing campaign targeting employees who have access to Facebook Business accounts. The attackers are targeting specific employees, and ...

IBM: Phishing is the Most Common Way to Gain Access to Victim Networks

Jul 28, 2022 8:55:52 AM By Stu Sjouwerman

New research from IBM shows four reasons why phishing attacks are still effective and remains the primary attack vector in 41% of cyberattacks.

KnowBe4 Top-Clicked Phishing Email Subjects for Q2 2022 [INFOGRAPHIC]

Jul 27, 2022 12:16:19 PM By Stu Sjouwerman

KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. We analyze 'in the wild' attacks reported via our Phish Alert Button, top subjects globally clicked on in ...

Nearly Half of Organizations Have Experienced Vishing

Jul 27, 2022 8:50:32 AM By Stu Sjouwerman

Forty-seven percent of organizations have experienced voice phishing (vishing) attacks over the past year, according to researchers at Mutare. Additionally, the researchers found that ...

New Report Reveals that Ransomware and Business Email Compromise Attacks Cause Nearly 70% of Cyber Incidents

Jul 27, 2022 8:49:48 AM By Stu Sjouwerman

Do you know your organizations true security risk and where to prioritize your resources? A new report from Palo Alto Networks sheds some light on these questions and shows multiple ...

[BEWARE] Microsoft and Facebook are the Most Abused Brands for Phishing Attempts

Jul 26, 2022 11:39:59 AM By Stu Sjouwerman

We all know that big brands can be exploited by bad actors in order to execute successful phishing attacks. Now a new study is showing phishing attacks leveraging big brands Microsoft and ...

Security Awareness Training Blog

View Topics