KnowBe4

Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

Google Maps’ Bank Listings Updated by Scammers

Scammers are taking advantage of Google Maps by modifying the contact information of the service’s bank listings. After replacing banks’ legitimate phone numbers with numbers of their ...
Continue Reading

GreyEnergy Malware Spreads Through Phishing Emails

The GreyEnergy APT primarily uses phishing emails as its initial infection method, according to analysis by Nozomi Networks. The malware has been targeting industrial control systems in ...
Continue Reading

Phishing Emails are Targeting Spotify Users

A phishing campaign is attempting to steal login credentials from Spotify users, according to researchers at AppRiver. The emails ask users to click a hyperlink to confirm their accounts, ...
Continue Reading

Why You Need To Make Security Awareness Training Mandatory. Read This Horror Story.

OK, so here is a horror story that you can prevent from happening in your own organization. Now and then we hear that KnowBe4 customers do not make the security awareness training ...
Continue Reading

Learning a 120K Lesson the Hard Way

The bank isn’t always responsible for making you whole after a business email compromise. Indiana’s Lake Ridge Schools lost more than $120,000 from a seven-million-dollar construction ...
Continue Reading

Attackers Impersonate CEOs to Scam Employees into Sending Gift Cards for the Holidays

A crafty mix of social engineering, great timing, and context act as the perfect ingredients to trick unwitting users into buying gift cards and placing them into the hands of the ...
Continue Reading

[Heads-up] Bad Guys Love Marriott: 500 Million Data Breach Is Phishing Heaven

So I guess we have just reached the tipping point, it's "privacy game over" for business travelers.
Continue Reading

KnowBe4 Fresh Content Update & New Features November 2018

We've got a few content updates in the KnowBe4 Modstore to share with you for the month of November!
Continue Reading

Employers Are Liable If They Don't Protect Employees' Sensitive Personal Information from Attack

A recent ruling from the Pennsylvania Supreme Court on an employee lawsuit against the University of Pittsburgh Medical Center stemming from a data breach should put all employers on ...
Continue Reading

Shadow IT is Alive and Well: One-Third of Employees Deploy Their Own Software

Employees see IT as an “inconvenience” and look for ways to get around security measures, putting the organization at risk, according to SailPoint’s 2018 Market Pulse Survey.
Continue Reading

As You Read This, It's Cyber Monday. How To Avoid The Top 10 Security Threats

InfoSecBuzz asked a number of security experts for their advice on the top security threats and how to avoid them. These are specialists from Alienvault, Cylance, Cybereason, F5 Networks, ...
Continue Reading

[Heads-up] Bad Guys Are Now Taking Over Email Inboxes Without Phishing Attacks

I found a great article in SecurityWeek by Alastair Paterson, the CEO of Digital Shadows. Could not have said it better myself, and he alerted everyone about an attack vector that was ...
Continue Reading

Do Your Emails Make the Naughty or Nice List?

Black Friday is just as popular with hackers as it is with shoppers. So is Cyber Monday, for that matter.
Continue Reading

CEOs are Prime Targets for Social Engineering Attacks

CEOs can be the weakest link in an organization’s security posture, according to Mimecast’s Matthew Gardiner. Carole Theriault talked to Gardiner last week on The CyberWire’s Hacking ...
Continue Reading

How better training, cybersecurity upgrades made one credit union safer

America’s Christian Credit Union, Glendora, Calif., reduced its cybersecurity threat plane by 90 percent by upgrading both its hardware and its resistance to phishing – and earned a ...
Continue Reading

Hacked Law Firm Can't Claw Back $580,000 From Bank That Completed Transfer

Max Mitchell at Law.com has an interesting and rather painful story. Don't let this happen to your organization.
Continue Reading

Scam Of The Week: Black Friday & Cyber Monday Alert

We have been warning against these types of scams for years and the bad guys are at it again. The team at RiskIQ summarized it pretty well this time:
Continue Reading

Celebrate The Holidays! Here is a brand new free KnowBe4 training module!

Compliments of  Celebrate The Holidays!  With a free interactive training course for the 2018 Holiday season to help you stay safe while you travel A little over three-quarters (77 ...
Continue Reading

KnowBe4 Named a Leader in the 2018 Gartner Magic Quadrant for Security Awareness Training

KnowBe4 has been positioned by Gartner, Inc. in the Leaders quadrant of the 2018 Gartner Magic Quadrant for Security Awareness Computer-Based Training for the second year in a ...
Continue Reading

Tweets from Elon Musk Still Aren't What They Seem

We've seen this before, and it's worth noting again. A tweet from a blue-checked Elon Musk is all it takes to set a Bitcoin giveaway frenzy into motion. The only problem is that it’s just ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews