Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

View Topics

[NEW FEATURE] KnowBe4 User Event API Helps You Tailor Security Awareness Training Based on Custom User Risk Events

Jun 24, 2019 10:14:37 AM By Stu Sjouwerman
You already know the importance of frequent year-round simulated phishing attacks and security awareness training for your users to help you build a more resilient and secure ...
Continue Reading

Phishing Attacks Go Mobile as Cybercriminals Leverage Push Notifications

Jun 24, 2019 7:07:42 AM By Stu Sjouwerman
Taking advantage of the inherent trust in mobile content, the bad guys are using a mixture of phishing text messages and look-alike sites to trick users into giving up credentials.
Continue Reading

[Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

Jun 23, 2019 11:30:59 AM By Stu Sjouwerman
The tension in the Middle-East apparently prompted a game-changing move by the U.S. President.  Washington Post sources say exactly 10 years after Stuxnet, the President approved a ...
Continue Reading

UK Forensic Crime Labs Shut Down Due To Ransomware Attack

Jun 22, 2019 10:48:19 AM By Stu Sjouwerman
Every police force across England and Wales has been forced to prioritize evidence for forensic testing following a criminal cyber attack affecting one of the primary forensic service ...
Continue Reading

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

Jun 22, 2019 10:34:21 AM By Stu Sjouwerman
This blog post has been superseded by a more recent one.  You can find this new post here.
Continue Reading

Phishing Campaign Impersonates Email Alerts From DHS

Jun 21, 2019 10:26:51 AM By Stu Sjouwerman
An ongoing email-based phishing scam is attempting to fool recipients into opening malicious attachments disguised as notifications from the U.S. Department of Homeland Security (DHS), ...
Continue Reading

Why Do Organizations Still Under-report Cybercrime?

Jun 21, 2019 9:48:09 AM By Stu Sjouwerman
It’s estimated that organizations aren’t engaging with Law Enforcement when becoming a victim of a cybercrime in large numbers. We cover 5 reasons why organizations don’t.
Continue Reading

Bogus Emails: 3.4 Billion Are Sent Every Day...

Jun 20, 2019 7:21:24 AM By Stu Sjouwerman
Research from Valimail shows that at least 3.4 billion phony emails are sent every day, Help Net Security reports. Despite this staggering number, most organizations still aren’t ...
Continue Reading

How Hackers Emptied Church Coffers with a Phishing Attack and Social Engineering Phone Call

Jun 20, 2019 7:09:18 AM By Stu Sjouwerman
Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.
Continue Reading

Hit by Ransomware Attack, Florida City Agrees to Pay Hackers $600,000

Jun 20, 2019 6:36:50 AM By Stu Sjouwerman
It was all over the press, and even made it in the New York Times: "The leaders of Riviera Beach, Fla., looking weary, met quietly this week for an extraordinary vote to pay nearly ...
Continue Reading

[NEW FEATURES] Branded Certificates and End User Surveys

Jun 20, 2019 6:28:47 AM By Stu Sjouwerman
We are excited to announce the release of two new features in the KnowBe4 platform. Branded Certificates and End User Training Surveys!
Continue Reading

[Heads-up] Alarming Tool Creates Deep Fakes That Can Now Be Edited With A Text Editor

Jun 14, 2019 6:56:27 AM By Stu Sjouwerman
Continue Reading

Voicemail Phishing Scam Steals Credentials

Jun 14, 2019 6:34:57 AM By Stu Sjouwerman
A new phishing campaign is asking victims to click on a link in an email to download a voicemail, My Online Security reports. When recipients click on the link, they’ll be redirected to a ...
Continue Reading

FBI’s Advice on Spotting Phishing

Jun 14, 2019 6:28:05 AM By Stu Sjouwerman
The FBI’s Internet Crime Complaint Center (IC3) released a PSA warning that attackers are exploiting people’s trust in sites that use HTTPS. Cybersecurity training has in the past rightly ...
Continue Reading

Social Engineering is at the Root of Nearly all Fraud Attacks

Jun 14, 2019 6:13:03 AM By Stu Sjouwerman
According to the latest fraud report from RSA, all four of the documented fraud attack methods use some form of social engineering to trick victims into giving up their money.
Continue Reading

Extortion Threatens Reputational Damage

Jun 11, 2019 6:48:11 AM By Stu Sjouwerman
Scammers are sending emails threatening to damage the reputation of websites unless the sites’ owners hand over 0.3 bitcoin, or around $2,400, according to BleepingComputer.
Continue Reading

The CIA will not Fix Your Online Rap Sheet

Jun 11, 2019 6:41:16 AM By Stu Sjouwerman
Scammers are still posing as CIA employees and telling victims that they’re about to be arrested for their involvement in an international pedophile ring, according to the Register. The ...
Continue Reading

Corporate Email Creates Unavoidable Risk

Jun 10, 2019 6:29:24 AM By Stu Sjouwerman
It’s impossible to avoid the risk of phishing attacks entirely, since employees still need to do their jobs, as Kelly Sheridan at Dark Reading puts it. Sheridan points to a recent report ...
Continue Reading

KnowBe4 Fresh Content and Feature Updates - May 2019

Jun 7, 2019 4:29:56 PM By Stu Sjouwerman
Check out the content and feature updates in the KnowBe4 platform for the month of May!
Continue Reading

It only takes three seconds...

May 31, 2019 11:44:23 AM By Stu Sjouwerman
“Statistics suggest the average human being falls for a social engineering attack about four times — with training — before they become ‘inoculated’ against that type of attack,” “Helpful ...
Continue Reading
Subscribe

Search Our Blog


ransomware-hostage-rescue-manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews