KnowBe4 and Okta Update

Mar 28, 2022 3:53:58 PM By Stu Sjouwerman

To start off, we do not use Okta in any of our products.

Making Better Push-Based MFA

Mar 28, 2022 1:51:20 PM By Roger Grimes

I used to be a huge fan of Push-Based Multifactor Authentication (MFA), but real-world use has shown that most of today’s most popular implementations are not sufficiently protective ...

Buy Now, Pay Later Scams

Mar 28, 2022 9:31:28 AM By Stu Sjouwerman

Fraudsters are taking advantage of the buy-now, pay-later (BNPL) payment model, according to Jim Ducharme, COO of Outseer. On the CyberWire’s Hacking Humans podcast, Ducharme explained ...

WIRED: "A Mysterious Satellite Hack Has Victims Far Beyond Ukraine"

Mar 24, 2022 3:20:26 PM By Stu Sjouwerman

WIRED wrote: "More than 22,000 miles above Earth, the KA-SAT is locked in orbit. Traveling at 7,000 miles per hour, in sync with the planet’s rotation, the satellite beams high-speed ...

Fidelity: "Why cybersecurity is material to all industries"

Mar 24, 2022 3:05:50 PM By Stu Sjouwerman

Fidelity just published an article titled "Cybersecurity: A growing risk". They note that the threat of Russian cyberattacks highlights vulnerabilities across industries. I'm quoting a ...

Repertoire of Ukraine Charity Phishing Scams

Mar 24, 2022 10:21:32 AM By Stu Sjouwerman

Scammers continue to exploit the crisis in Ukraine, according to researchers at Bitdefender. Over the past week, the researchers believe the fraudsters have adjusted their tactics in ...

Initial Access Broker Group Relies on Social Engineering

Mar 24, 2022 10:20:53 AM By Stu Sjouwerman

Google’s Threat Analysis Group (TAG) describes a cybercriminal group it calls “EXOTIC LILY” that acts as an initial access broker for numerous financially motivated threat actors, ...

Number of Phishing Attacks Hits an All-Time High in 2021, Tripling That of Early 2020

Mar 23, 2022 2:00:34 PM By Stu Sjouwerman

New data from the Anti-Phishing Working Group shows cybercriminals are stepping on the gas, focusing phishing attacks on credential theft and response-based scams.

Phishing Attack-Turned-Wire Fraud Case Sees a Win for the Policyholder

Mar 23, 2022 2:00:26 PM By Stu Sjouwerman

In an unusual turn of events, a recent court decision sided with the policyholder, despite specific policy language that probably should have favored the insurer.

QakBot Banking Trojan Evolves and Now Takes Over Email Conversations to Spread Malware

Mar 23, 2022 2:00:06 PM By Stu Sjouwerman

As if stealing all your credentials, cookies, and email wasn’t bad enough, this new version of QakBot inserts itself into your emails, impersonating you to gain access to more victims.

Phishing Scam with Fraudulent Invoice Costs City of Fresno Over $600,000

Mar 23, 2022 1:59:56 PM By Stu Sjouwerman

This simple invoice scam appears to be a part of a much broader campaign targeting municipalities, posing as existing subcontractors.

Exploiting Trust in reCAPTCHA

Mar 23, 2022 8:46:14 AM By Stu Sjouwerman

Researchers at Avanan warn that attackers are using reCAPTCHAs on their phishing sites to avoid detection by security scanners.

Published Zelenskyy Deepfake Video Demonstrates the Modern War is Online

Mar 22, 2022 4:10:05 PM By Stu Sjouwerman

The video uploaded to a hacked Ukrainian news website shows how far the technology has come, how it can be used in social engineering, as well as how the tech still needs to improve.

SMBs Are 350% More Likely to Experience Social Engineering Attacks Via Phishing

Mar 22, 2022 4:08:43 PM By Stu Sjouwerman

New data shows phishing, social engineering, and impersonation dominate as cybercriminals are becoming more frequent and successful with their attacks.

CyberheistNews Vol 12 #12 [New White House Alert] Train Your Users Against Threat of Russian Cyberattacks

Mar 22, 2022 11:06:15 AM By Stu Sjouwerman

[New White House Alert] Train Your Users Against Threat of Russian Cyberattacks Email not displaying? | View Knowbe4 Blog CyberheistNews Vol 12 #12 | Mar. 22nd., 2022 [New White House ...

[BREAKING] White House warns Russia is prepping possible cyberattacks against US

Mar 21, 2022 6:16:51 PM By Stu Sjouwerman

With the recent cyber-attacks between Russia and Ukraine and the current intelligence coming from the US Government, organizations want to shore up their defenses to reduce the risk of a ...

Chameleons Phish, Too

Mar 21, 2022 10:40:34 AM By Stu Sjouwerman

One of the challenges cyber criminals face is that their scams often have a relatively short shelf-life. Once they’ve been used, the gaff is quickly blown, and the scammers hope to ...

[Heads Up] New Evil Ransomware Feature: Disk Wiper if You Don't Pay

Mar 17, 2022 8:43:59 AM By Stu Sjouwerman

There is a new ransomware-as-a-service (RaaS) strain called LokiLocker, researchers at Blackberry warn. The malware uses rare code obfuscation and includes a file wiper component that ...

KnowBe4 Named a Leader in The Forrester Wave for Security Awareness and Training Solutions

Mar 17, 2022 8:00:00 AM By Stu Sjouwerman

We’re thrilled to announce that KnowBe4 has been named a Leader in The Forrester WaveTM : Security Awareness and Training Solutions, Q1 2022 report based on our current offering, strategy ...

Ransomware-Related Data Leaks Increase 82% as the Number of Cybercriminal Groups Nearly Triples

Mar 16, 2022 10:27:52 AM By Stu Sjouwerman

New insight into the state of the attacks and threats paints a picture where the cybercriminals are growing in number, sophistication and successes, while victims just sit back seemingly ...

Security Awareness Training Blog

View Topics