Email-Based Threats Increase 64% as Attacks Grow in Sophistication and Volume

May 12, 2021 8:18:54 AM By Stu Sjouwerman

New data from Mimecast shows how email-based threats are not only the greatest perceived concern, but are proving to be the reason for increased experienced attacks.

KnowBe4 Named a Leader in the Spring 2021 G2 Grid Report for Security Awareness Training

May 12, 2021 8:00:00 AM By Stu Sjouwerman

The latest G2 Grid Report compares Security Awareness Training (SAT) vendors based on user reviews, customer satisfaction, popularity and market presence.

Your Organization Needs to Take Security Awareness Training More Seriously

May 11, 2021 4:08:50 PM By Roger Grimes

Your organization needs to take security awareness training (SAT) more seriously. I mean truly serious, really serious, and not relegated to some quasi-, semi-serious status that the vast ...

Fake Court Order Used to Take Over Domains

May 11, 2021 9:00:39 AM By Stu Sjouwerman

Motherboard reports that a scammer used a phony court order to trick a domain registrar into giving them control over a domain that posted links to dark web drug markets. The scammer then ...

KnowBe4 Fresh Content Updates from April: Including New AI-Driven Phishing Feature

May 7, 2021 8:40:27 AM By Stu Sjouwerman

Here are important fresh content updates and new features to share with you that happened in the month of April.

[NEW FEATURE] AI-Driven Phishing Helps Admins Deliver a Personalized Simulated Phishing Experience to Each User

May 6, 2021 4:50:21 PM By Stu Sjouwerman

We are excited to announce the availability of KnowBe4’s new AI-Driven Phishing feature. The KnowBe4 phishing platform now leverages machine learning to recommend and deliver informed and ...

UK IT Decision Makers Fear Their Remote Workers Put Company Data at Risk for Data Breach

May 4, 2021 11:23:23 AM By Stu Sjouwerman

According to an annual survey from Apricorn, UK IT decision makers are fearing the worst as their staff continues to work in a remote environment.

Do Ransomware Gangs Restore Data, Even After They're Paid?

May 4, 2021 9:23:28 AM By Stu Sjouwerman

Only 8% of ransomware victims get all of their data back after paying the ransom, according to researchers at Sophos. The researchers found that, on average, victims who pay the ransom ...

May the 4th Be With You and Your Users!

May 4, 2021 9:20:09 AM By James McQuiggan

May the force be with you, May the fourth be with you, may the phish not attack you. Okay, so it does not quite rhyme, but you get the idea. We reach the fourth day of the fifth month of ...

Why Should We Care About Personal Smishing Attacks?

Apr 29, 2021 10:33:34 AM By Roger Grimes

I am not sure what is going on these days, but for several weeks, I have received far more SMS-based phishing (i.e., smishing) attacks than usual.

Federal Reserve Chairman Jerome Powell Cites Cyberthreats as Current “Biggest Concern” to Financial Institutions

Apr 29, 2021 10:25:54 AM By Stu Sjouwerman

Fears of a resurgence of COVID-19 and increased cyberattacks are mentioned as top risks that can materially impact the finance sector and the economy, by Jerome Powell in a recent ...

Researchers Warn of EtterSilent Facilitating Risky Malware Delivery

Apr 29, 2021 10:25:23 AM By Stu Sjouwerman

Cybercriminals are using a new malicious document builder dubbed “EtterSilent,” according to researchers at Intel 471. The builder is used to craft Microsoft Office documents with macros ...

Lazarus Group Uses New Technique to Avoid Detection

Apr 29, 2021 10:25:03 AM By Stu Sjouwerman

North Korea’s Lazarus group is using an interesting method to evade security measures, according to researchers at Malwarebytes. The threat actor is sending phishing emails with malicious ...

Evil Corp Tries to Work Around U.S. Treasury Sanctions Using Hades Ransomware

Apr 29, 2021 10:24:44 AM By Stu Sjouwerman

The cybercriminal group linked to over $100 Million in financial damages has pivoted their execution strategy to bypass sanctions that prevent U.S. companies from paying them ransom.

Mobile is a Problem: 97% of Organizations Experienced Mobile Attacks in 2020

Apr 29, 2021 8:41:17 AM By Stu Sjouwerman

Everything from applications, social apps, OS vulnerabilities and even mobile device management acted as initial attack vectors troubling nearly every single organization globally.

Cybercriminals Use Job-Specific Social Media Platforms to Target UK Citizens With Fake Accounts

Apr 29, 2021 4:55:00 AM By Stu Sjouwerman

At least 10,000 UK citizens have been targeted by nation-state actors via fake LinkedIn accounts over the past five years, the BBC reports. Ken McCallum, Director-General of MI5, said ...

A Legitimate Charity Prompts Scam Imitators

Apr 28, 2021 8:00:00 AM By Stu Sjouwerman

Scammers are impersonating philanthropist Mackenzie Scott, the billionaire ex-wife of Jeff Bezos, the New York Times reports. Scott prefers to give money directly and contacts charities ...

FBI Obtains Authorization to Access US Servers to Remove Webshells Due to Exchange Vulnerability

Apr 27, 2021 1:45:00 PM By Stu Sjouwerman

Your server could have been compromised and the FBI was trying to mitigate the issue without you even knowing it yet.

Forrester TEI Study Shows KnowBe4 Can Deliver a Customer ROI of 276% with a Less Than 3-Month Payback

Apr 27, 2021 11:00:00 AM By Stu Sjouwerman

KnowBe4 commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study, examining the potential Return on Investment (ROI) enterprises might realize by implementing the ...

Eavesdrop on the Back-and-Forth of Negotiating with a Criminal Ransomware Organization

Apr 27, 2021 10:00:58 AM By Stu Sjouwerman

Details around the recent successful ransomware attack on fashion retailer FatFace provide some insight into what you should expect when you become a victim.

Security Awareness Training Blog