Federal Reserve Chairman Jerome Powell Cites Cyberthreats as Current “Biggest Concern” to Financial Institutions

Apr 29, 2021 10:25:54 AM By Stu Sjouwerman

Fears of a resurgence of COVID-19 and increased cyberattacks are mentioned as top risks that can materially impact the finance sector and the economy, by Jerome Powell in a recent ...

Researchers Warn of EtterSilent Facilitating Risky Malware Delivery

Apr 29, 2021 10:25:23 AM By Stu Sjouwerman

Cybercriminals are using a new malicious document builder dubbed “EtterSilent,” according to researchers at Intel 471. The builder is used to craft Microsoft Office documents with macros ...

Lazarus Group Uses New Technique to Avoid Detection

Apr 29, 2021 10:25:03 AM By Stu Sjouwerman

North Korea’s Lazarus group is using an interesting method to evade security measures, according to researchers at Malwarebytes. The threat actor is sending phishing emails with malicious ...

Evil Corp Tries to Work Around U.S. Treasury Sanctions Using Hades Ransomware

Apr 29, 2021 10:24:44 AM By Stu Sjouwerman

The cybercriminal group linked to over $100 Million in financial damages has pivoted their execution strategy to bypass sanctions that prevent U.S. companies from paying them ransom.

Mobile is a Problem: 97% of Organizations Experienced Mobile Attacks in 2020

Apr 29, 2021 8:41:17 AM By Stu Sjouwerman

Everything from applications, social apps, OS vulnerabilities and even mobile device management acted as initial attack vectors troubling nearly every single organization globally.

Cybercriminals Use Job-Specific Social Media Platforms to Target UK Citizens With Fake Accounts

Apr 29, 2021 4:55:00 AM By Stu Sjouwerman

At least 10,000 UK citizens have been targeted by nation-state actors via fake LinkedIn accounts over the past five years, the BBC reports. Ken McCallum, Director-General of MI5, said ...

A Legitimate Charity Prompts Scam Imitators

Apr 28, 2021 8:00:00 AM By Stu Sjouwerman

Scammers are impersonating philanthropist Mackenzie Scott, the billionaire ex-wife of Jeff Bezos, the New York Times reports. Scott prefers to give money directly and contacts charities ...

FBI Obtains Authorization to Access US Servers to Remove Webshells Due to Exchange Vulnerability

Apr 27, 2021 1:45:00 PM By Stu Sjouwerman

Your server could have been compromised and the FBI was trying to mitigate the issue without you even knowing it yet.

Forrester TEI Study Shows KnowBe4 Can Deliver a Customer ROI of 276% with a Less Than 3-Month Payback

Apr 27, 2021 11:00:00 AM By Stu Sjouwerman

KnowBe4 commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study, examining the potential Return on Investment (ROI) enterprises might realize by implementing the ...

Eavesdrop on the Back-and-Forth of Negotiating with a Criminal Ransomware Organization

Apr 27, 2021 10:00:58 AM By Stu Sjouwerman

Details around the recent successful ransomware attack on fashion retailer FatFace provide some insight into what you should expect when you become a victim.

[New Benchmarking Feature] Compare Your Organization’s Security Awareness Proficiency with Other Companies in Your Industry

Apr 13, 2021 8:37:33 AM By Stu Sjouwerman

We are excited to announce that the KnowBe4 Industry Benchmarking feature has been expanded to now include industry benchmark comparison data for Security Awareness Proficiency Assessment ...

3 Ways To Protect Your Identity Online

Apr 13, 2021 8:00:00 AM By James McQuiggan

Within security awareness training programs, cybersecurity experts promote various tactics and best practices to implement within personal and work environments to protect your identities ...

[HEADS UP] DocuSign Issues Alert of Malicious New Hacking Tool

Apr 9, 2021 3:45:57 PM By Stu Sjouwerman

Earlier this week, DocuSign issued an alert that notified users of a new hacking tool. This tool is imitating DocuSign so then the bad guys can drop malware into victims' systems.

H Layer Credentialing Announces Security Awareness and Culture Professional (SACP)® Certification

Apr 9, 2021 8:49:45 AM By Stu Sjouwerman

This is a very exciting development for the Cyber Security industry as a whole and particularly those of us that believe that Security Awareness Training is a critical step in a complete ...

Australian Organizations Increase Cyber Security Spend to Nearly A$5B in 2021

Apr 9, 2021 8:34:08 AM By Stu Sjouwerman

The rise in cyberattacks in Australia is seeing its natural result – organisations realizing the need to put more budget focused on cybersecurity, with the largest portion going towards ...

The Digital Workplace is a Cybersecurity Disaster!

Apr 9, 2021 8:34:06 AM By Stu Sjouwerman

New data reviewing how the 2020 shift to a remote workforce impacted organizational security shows all too well that since the pandemic onset, cybersecurity has become critically worse.

APT Group Use Voice-Changing Software to Impersonate Women as Part of Espionage Attacks

Apr 9, 2021 8:34:02 AM By Stu Sjouwerman

The middle eastern threat group known as APT-C-23 are targeting male soldiers in the Israel Defense Forces in an attempt to get their victims to download and install malware.

LinkedIn Data of 500 Million Users Hacked, Up For Sale: Report

Apr 9, 2021 8:07:48 AM By Stu Sjouwerman

Microsoft-owned social network LinkedIn is reportedly the latest victim of a massive data breach where data of 500 million user profiles has been allegedly leaked by cybercriminals. The ...

[Security Culture Report 2021] A Global Security Culture Perspective During a Pandemic

Apr 6, 2021 9:35:21 AM By Stu Sjouwerman

The 2021 KnowBe4 Security Culture Report is the largest study of its kind, measuring organizations' security cultures and surveying more than 320,000 employees across 1,872 organizations ...

Key Findings From the 2021 SANS Security Awareness Report

Apr 6, 2021 8:57:57 AM By Perry Carpenter

Like most security professionals, there are a few industry reports that I really look forward to reading each year. Pretty high on that list is the SANS Security Awareness report. SANS ...

Security Awareness Training Blog