Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.
The North Korean threat actor ScarCruft has incorporated ransomware into its arsenal, according to researchers at South Korean security firm S2W.
In today's world, cyberattacks are a constant threat. While technical defenses are crucial, people often remain the easiest attack vector for cybercriminals.
A phishing campaign is targeting Instagram users with phony notifications about failed login attempts, according to researchers at Malwarebytes.
A global retail and wholesale company transformed their security posture after implementing KnowBe4's Phish Alert Button (PAB) and security awareness training, achieving an astonishing ...
More than one in ten people who were targeted by job scams this year fell victim, according to a report from Resume.org.
Getting through secure email gateways (SEGs) is simply the cost of doing business for a cybercriminal. Literally, detection at the perimeter by a SEG is the same as falling at the first ...
Employees are expected to behave securely, and the definition of “securely” is often written down in a myriad of security policies. Yet, people do not always comply with security policies ...
Social engineering remains a primary initial access vector for cybercriminals, according to a new report from Europol.
I recently had several conversations about repeat clickers. First with a Forrester analyst and then, shortly after, at KB4-CON Orlando following a presentation on the subject by Matthew ...
I am used to repeating some pretty big numbers when talking about the financial impact of cybercrimes. When you look into the data, it is pretty easy to start talking about tens of ...
Lead Researchers: James Dyer and Louis Tiley Between May 5 and May 7, 2025, KnowBe4 Threat Lab identified a phishing campaign originating from accounts created on the legitimate service ...
Researchers at Google have published a report on the latest scam trends, noting an increase in travel-themed scams targeting people preparing for their summer vacations.
Researchers at Trellix warn of a spear-phishing campaign that’s targeting CFOs around the world with phony employment offers.
Human risk remains one of the most underestimated threats in cybersecurity. Even with major advancements in defensive technology, human error still accounts for the majority of data ...
A KnowBe4 co-worker of mine recently got this SMS phishing message (i.e., smish).
The FBI is warning that the Silent Ransom Group (SRG) is targeting law firms with IT-themed social engineering attacks and callback phishing emails.
A phishing campaign is targeting European countries with lures themed around copyright infringement, researchers at Cybereason warn.
Last year, KnowBe4's report "Exponential Growth in Cyber Attacks Against Higher Education Institutions" illustrated the growing cyber threats facing universities and colleges.
Researchers at Certo warn that a new AI chatbot called “Venice[.]ai” can allow cybercriminals to easily generate phishing messages or malware code.
You know what's interesting about data breaches? Everyone focuses on credit card numbers and financial data, but the reality is that every piece of information has value to someone.
