Back-to-School: a Buzzkill in More Ways than One

Jul 9, 2020 9:01:39 AM By Stu Sjouwerman

40% of the top twenty universities in the US aren’t using DMARC to mitigate phishing attacks that impersonate the universities’ domains, according to researchers at Tessian. Additionally, ...

[On-Demand Webinar] Hackers Exposed: Kevin Mitnick Shares His Tradecraft and Tools to Help You Hack Proof Your Network

Jul 9, 2020 8:27:47 AM By Stu Sjouwerman

Months of quarantine, transitioning to work from home, economic uncertainty, social and political turmoil… it’s easy to see why your employees are amped up, tense and distracted. And the ...

More Than 15 Billion Credentials Are For Sale in Criminal Markets

Jul 8, 2020 3:50:09 PM By Stu Sjouwerman

Researchers at Digital Shadows warn that there are more than 15 billion leaked login credentials for sale in online criminal marketplaces. This number is up 300% since 2018, and the ...

Microsoft Seizes Six Domains Used in Sophisticated Phishing Scheme

Jul 8, 2020 8:24:34 AM By Stu Sjouwerman

Microsoft announced that the US District Court for the Eastern District of Virginia has ruled that the company can seize six domains that were being used in a widespread phishing ...

KnowBe4’s Q2 2020 Year-Over-Year Sales Grow 25%

Jul 4, 2020 9:47:36 AM By Stu Sjouwerman

We announced on July 2nd that 2020's second quarter was 25% higher in sales than Q2 2019, and that we are nearing a staff of 1,000 and 33,000+ customers worldwide. KnowBe4 continues on a ...

June Content Update: Including New Roger Grimes Video Series on Data-Driven Defense

Jul 2, 2020 3:41:59 PM By Stu Sjouwerman

Here are a few important content updates to share with you for the month of June.

Looking for Binge-Worthy Viewing Options This Summer?

Jul 2, 2020 1:03:12 PM By Stu Sjouwerman

Looking for some binge-worthy watching this summer? We've got just what you're looking for! Check out this innovative new security awareness video series called ‘The Inside Man’.

A "Secure DNS" Scam: an Upgrade that's a Downgrade

Jul 1, 2020 8:27:47 AM By Stu Sjouwerman

A phishing campaign is targeting website owners with convincing, personalized emails that purport to come from WordPress, Naked Security reports. The emails claim that WordPress is ...

Phishing in Irish Streams

Jun 30, 2020 8:24:18 AM By Stu Sjouwerman

Netflix is warning users in Ireland to be on the lookout for another phishing campaign that’s impersonating the streaming service, Extra.ie reports. The emails inform recipients that ...

It's the Best of 2020! Cyber CSI: Learn How to Forensically Examine Phishing Emails to Better Protect Your Organization

Jun 29, 2020 3:10:24 PM By Stu Sjouwerman

Roger Grimes' lesson on how to forensically examine phishing emails received the highest viewer rating of any webinar so far this year. In case you missed it, make sure to watch this ...

60% of Organizations are Hit by Cyberattacks Spread by Their Own Employees

Jun 29, 2020 8:37:16 AM By Stu Sjouwerman

The unwitting participant appears to be alive and well, based on new data from security vendor Mimecast. With employees being the source of attack surface expansion, what’s an org to do?

New Sextortion Method Uses Social Engineering and Doxing To Identify and Target Victims

Jun 29, 2020 8:33:43 AM By Stu Sjouwerman

According to the SANS Internet Storm Center, cybercriminals are engaging their victims online, using social engineering tactics to collect needed details to extort money.

New Dropbox-Based Pandemic Relief Payment Scam Targets U.K. Microsoft 365 Users, Bypassing Email Security

Jun 29, 2020 8:30:45 AM By Stu Sjouwerman

Using a Dropbox Transfer page, this new scam presses all the urgency buttons while eluding detection as being malicious in an effort to steal the victim’s online credentials.

Hit Them When They're Down: Two Cyberattacks Leave Operations Halted with a Ransom to Pay

Jun 29, 2020 8:26:48 AM By Stu Sjouwerman

A recent cyberattack on Australian beverage manufacturer Lion demonstrates how even a modicum of precaution after an attack can spell doom for operations.

One Letter Away: Impersonation, Bitcoin, and Phishing Expeditions

Jun 29, 2020 8:21:19 AM By Stu Sjouwerman

KrebsOnSecurity reports that a phishing website has been impersonating the private messaging service Privnote.com in order to steal Bitcoin. The real Privnote is a free site that allows ...

Phishing Attacks Significantly Increase in Singapore During COVID-19 Pandemic

Jun 26, 2020 8:55:57 AM By Stu Sjouwerman

The number of phishing attacks in Singapore to give up personal information has almost tripled in the last year and doubled during the COVID-19 pandemic, according to the Cybersecurity ...

New Training Modules Added on Data-Driven Defense

Jun 25, 2020 8:27:44 AM By Stu Sjouwerman

We have exciting news to share! Two new modules have been released about data-driven defense, both featuring Data-Driven Evangelist Roger Grimes.

Survey Says...You've Been Pwned

Jun 25, 2020 8:25:36 AM By Stu Sjouwerman

Surveys are enticing, and so are survey scams. But they’re easy to recognize if you know what to look for, according to Paul Ducklin at Naked Security. Ducklin describes a typical survey ...

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Jun 24, 2020 4:17:48 PM By Stu Sjouwerman

Scammers are taking advantage of the prominent use of VPNs by remote workforces to send out this very topically relevant phishing email that just wants to steal your credentials.

20% of Organizations Provided No Cybersecurity Guidance to Users Making the Shift to Working from Home

Jun 24, 2020 4:13:06 PM By Stu Sjouwerman

At a time when cyber risk is at its highest levels, new data shows how little organizations have done to ensure employees are prepared for cyber attack while working from home.

Security Awareness Training Blog

KnowBe4 Blog

View Topics