None But the Lonely Heart Would Fall for an Emoji

Mar 3, 2020 8:24:20 AM By Stu Sjouwerman

Researchers at Malwarebytes and X-Force IRIS have come across an ongoing phishing campaign that’s using romance-themed emails to distribute the Nemty ransomware, BleepingComputer reports. ...

Afraid You're Communicating Too Frequently? Rethink That.

Feb 27, 2020 8:39:24 AM By Joanna Huisman

This blog was co-written by Joanna Huismann and Aimee Laycock. Communication is not always easy (let’s be honest, we have all wanted to scream with frustration at our partner or a family ...

Guess Who Else is Now Doing Security Training Surveys?

Feb 27, 2020 8:33:11 AM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. A few months ago, KnowBe4 began offering customers two new kinds of scientifically-based assessments to help IT departments get a better ...

Verizon: More Than Half of Users Click on Multiple Phishing Links. Social Engineering, Innovation are Responsible

Feb 26, 2020 10:08:50 AM By Stu Sjouwerman

The latest data from Verizon’s 2020 Mobile Security Index report shows that both consumer and business users make it all too easy for cyberattackers to fool them into becoming a victim.

An Influence or Wire Fraud?

Feb 26, 2020 8:26:37 AM By Stu Sjouwerman

A 22-year-old Instagram and YouTube influencer named Kayla Massa has been arrested after allegedly convincing her followers to assist her in a fraud scheme, Quartz reports. Prosecutors ...

39 Percent of Organizations Were Victims of a Mobile Attack Despite Improved Security

Feb 26, 2020 8:19:25 AM By Stu Sjouwerman

Brand new data from Verizon shows businesses sacrificed when it comes to mobile security; a decision that caused compromises with impacts well-beyond just a simple breach.

KnowBe4 Named a Leader in The Forrester Wave for Security Awareness and Training Solutions

Feb 25, 2020 2:54:27 PM By Stu Sjouwerman

We have some great news to share with our customers and global security professionals alike. KnowBe4 has been named a Leader in The Forrester Wave™ : Security Awareness and Training ...

Why Minimizing Human Error is the Only Viable Defense Against Spear Phishing

Feb 25, 2020 11:21:58 AM By Stu Sjouwerman

Phishing attacks have become one of the business world's top cybersecurity concerns. These social engineering attacks have been rising over the years, with the most recent report from the ...

Spamming Tools are a Commodity in the Criminal Underworld

Feb 25, 2020 8:21:25 AM By Stu Sjouwerman

Cheap and easy-to-use phishing kits and other social engineering tools are readily available for purchase on the black market, according to researchers at Digital Shadows. Criminals ...

WSJ: "Losing $450,000 in Three Days: Hackers Trick Victims Into Big Wire Transfers"

Feb 24, 2020 12:32:09 PM By Stu Sjouwerman

Rachel Louise Ensign wrote a great story for the WSJ about CEO Fraud, also known by the FBI as Business Email Compromise. I'm quoting an extract and I strongly recommend sending a link to ...

A Single BEC Gang is Launching Thousands of Attacks Per Year

Feb 24, 2020 8:22:44 AM By Stu Sjouwerman

A unique cybercriminal group launched business email compromise (BEC) attacks against more than 2,100 companies in the US between April and August 2019, according to researchers at Agari. ...

[EYE-OPENER] Dutch Minister Of Justice And Security: "Fighting Phishing Starts With Awareness"

Feb 24, 2020 8:00:01 AM By Stu Sjouwerman

"The fight against phishing starts with raising the awareness of internet users, stated Justice and Security Minister Grapperhaus. He responded to figures from Dutch banks showing that ...

[Heads-up] Ransomware Criminals Hack An Accounting Company And Cause A Data Breach For Their Customers

Feb 24, 2020 7:00:00 AM By Stu Sjouwerman

Last December, a ransomware infection of Albany, New York-based accounting firm BST & Co. CPAs LLC exposed the confidential data of their customers, causing a data breach for one of ...

Massive 13,467% Growth in WhatsApp Phishing URLs Seen as Top Impersonated Domains Are on the Decline

Feb 21, 2020 6:44:06 PM By Stu Sjouwerman

The latest data from email security vendor Vade Secure shows drastic shifts in domain impersonation trends cybercriminals are using to carry out phishing attacks.

Here Is A Real-life Bank Phone Scam Blocked By A Security Awareness Trained Employee

Feb 21, 2020 12:01:58 PM By Stu Sjouwerman

Brad Mathis at our partner Keller Schroeder sent me the following real-life story from Matt, a KnowBe4 Security Awareness Training client...

Emotet Malware Shows Up in SMiShing Attacks Disguised as Bank Notifications

Feb 21, 2020 8:27:20 AM By Stu Sjouwerman

A newly discovered attack looks to try to make a victim of mobile device holders using a two-pronged attack that uses Emotet and, perhaps, Trickbot.

Most Organizations Stick to Legacy Password Security Practices Despite Experiencing Cyberattacks

Feb 21, 2020 8:24:51 AM By Stu Sjouwerman

In a surprising twist, new data sheds light on the lack of proper security around passwords and authentication by IT at a time when cyberattacks are all but an absolute given.

Courts: Banks $2 Million in Losses from a BEC Attack Aren’t Covered by Cyberinsurance

Feb 20, 2020 6:25:04 AM By Stu Sjouwerman

Using emails impersonating the wife of a senior executive at Crown Bank, cybercriminals were able to take the bank for $2 million – an amount the courts held the bank responsible for.

Phishing URLs Increase 640% as Organizations (Finally!) Embrace Security Awareness Training

Feb 20, 2020 6:16:10 AM By Stu Sjouwerman

The latest data from security vendor Webroot shows how cybercriminals are changing their attack methods and targets – and how Security Awareness Training makes the difference.

New Spear Phishing Campaign Targets 27 Famous Brands With Malicious SLK Files

Feb 20, 2020 6:04:08 AM By Stu Sjouwerman

A new spear phishing campaign is targeting twenty-seven companies around the world with malicious SLK (Symbolic Link) files, according to BleepingComputer. The attackers pose as a real ...

Security Awareness Training Blog