Security Awareness Training Blog

KnowBe4 Blog

Read the latest news about KnowBe4, company announcements, new product releases and updates, awards and recognitions.

View Topics

Why BEC Punches Above Its Weight

Jun 9, 2020 8:27:09 AM By Stu Sjouwerman
Business email compromise (BEC) attacks are particularly insidious because they don’t use malware payloads or malicious URLs. That’s a reminder from Evan Reiser, CEO and co-founder of ...
Continue Reading

Hurricane Season Means Disaster-Related Scams

Jun 9, 2020 7:00:00 AM By Stu Sjouwerman
June 1 marks the official start of the 2020 Atlantic hurricane season. The Cybersecurity and Infrastructure Security Agency (CISA) warns users to remain on alert for malicious cyber ...
Continue Reading

Security Awareness is the Biggest Security Challenge for Remote Workforces

Jun 8, 2020 11:41:03 AM By Stu Sjouwerman
As the dust from enabling employees to work remotely has settles, new data from security vendor PulseSecure highlights where remote security has been – and still is – a challenge.
Continue Reading

Why People Don't Learn (It's Not Always Their Fault)

Jun 8, 2020 8:27:48 AM By Stu Sjouwerman
IT and security managers often fail to understand how well their employees actually absorb cybersecurity training, according to a survey from Mimecast and Forrester Consulting. The survey ...
Continue Reading

May Content Update: Including New When You Report, We Get Stronger Video Series

Jun 5, 2020 8:00:00 AM By Stu Sjouwerman
Check out new training content added to the KnowBe4 ModStore in the month of May.
Continue Reading

Prediction: Ransomware Attacks to Spike as Employees Return to the Office

Jun 5, 2020 7:00:00 AM By Stu Sjouwerman
Because of the nature of ransomware attacks and the mass numbers of workers at home, anti-malware vendor Emisoft believes we’re going to see a rise once work returns to normal.
Continue Reading

[HEADS UP] Cybercriminals in Australia Harass Recipients with Abusive Transaction Descriptions on Bank Statements

Jun 4, 2020 4:59:41 PM By Stu Sjouwerman
There are bad guys in Australia that have given away money in order to use social engineering and harass people with abusive transaction descriptions that appear in online banking ...
Continue Reading

[BEWARE] New Report on Doxxing Exposes Cybercriminal Trends

Jun 4, 2020 12:13:51 PM By Stu Sjouwerman
A new threat intelligence report on doxxing, researched by cybersecurity experts at Kivu, reveals that the majority of attacks occur in the U.S., with companies in the consumer sector ...
Continue Reading

[HEADS UP] More Australian Companies Hit By Mespinoza/Pysa Ransomware

Jun 4, 2020 12:05:13 PM By Stu Sjouwerman
Two more Australian companies have been hit by attackers using the Mespinoza/Pysa Windows ransomware, the same malware that was used to take down the Australian money management firm ...
Continue Reading

Excel Macros Bypass Your Filters and Slip in Malware Payloads

Jun 4, 2020 9:56:26 AM By Stu Sjouwerman
Researchers at Lastline warn that attackers are increasingly utilizing Excel 4[.]0 macros to deliver malware while avoiding detection by security products. Excel 4[.]0 (XL4) macros were ...
Continue Reading

Combatting Rogue URL Tricks: How You Can Quickly Identify and Investigate the Latest Phishing Attacks

Jun 4, 2020 8:58:47 AM By Stu Sjouwerman
Don't click phishy links. Everyone knows that. But are your end users prepared to quickly identify today's tricky tactics being used by the bad guys? Probably not. Cybercriminals have ...
Continue Reading

Remote Work Isn’t Good for Corporate Security (Part 2): 30% of Organizations Have Been the Victim of Phishing Scams Since the Lockdown

Jun 4, 2020 8:24:05 AM By Stu Sjouwerman
Lots of new data is now just coming out of the woodwork demonstrating some of the harsh realities of having employees work from home without proper security in place.
Continue Reading

Remote Work Isn’t Good for Corporate Security (Part 1): 6 in 10 Employee’s Online Accounts Have Been Compromised Since Working Remotely

Jun 4, 2020 8:20:45 AM By Stu Sjouwerman
Working from home has its advantages. But, according to new data, one of them isn’t keeping the organization secure.
Continue Reading

Pandemics, Killer Insects, and Riots Stir Up Cybercriminals

Jun 3, 2020 7:00:00 AM By Erich Kron
What a year 2020 has been. We have not even gotten half way into the year and we have dealt with a global pandemic, potential murder hornets, protests and riots and even the possibility ...
Continue Reading

Phishing for Supermarket Deliveries

Jun 2, 2020 9:00:23 AM By Stu Sjouwerman
Scammers are exploiting the increased demand for online shopping by setting up spoofed supermarket websites, Teiss reports. Researchers at Mimecast recently found thirty websites ...
Continue Reading

How Low Will Cybercriminals Go?

Jun 2, 2020 8:58:04 AM By Javvad Malik
Surely Bond villains only exist in movies -- I mean people aren’t truly evil are they? Especially ones who sit behind a computer. This was part of a discussion I was having with my ...
Continue Reading

The Latest Ransomware Attacks Can Require a Data Breach Notification

Jun 2, 2020 8:46:46 AM By Stu Sjouwerman
Ransomware variants shifting tactics to include extortion may be cause for organizations to treat them as data breaches and, therefore, quickly notify affected parties.
Continue Reading

Human Performance as a Risk Factor

Jun 1, 2020 8:25:33 AM By Stu Sjouwerman
Most organizations don’t place enough focus on the human elements of cybersecurity, according to Stephen A. Wilson, Dean Hamilton, and Scott Stallbaum from consulting firm Wilson Perumal ...
Continue Reading

Supreme Court “Summons” is the Latest Phishing Attack Aimed at Stealing Your Microsoft 365 Credentials

May 30, 2020 8:31:22 AM By Stu Sjouwerman
Even the Supreme Court isn’t safe from brand impersonation in this scam intent on getting victims to click on a link to a supposed subpoena to attend a hearing.
Continue Reading

Verizon: Phishing is the Attack Vector Most Often Seen in Data Breaches

May 30, 2020 8:28:10 AM By Stu Sjouwerman
This year’s much-anticipated Verizon Data Breach Investigations Report sheds some light on how cybercriminals use phishing to achieve their goal of stealing data.
Continue Reading
Subscribe

Search Our Blog


Ransomware Has Gone Nuclear Webinar

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews