Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

View Topics

Mac users warned that disabling all Office macros doesn’t actually disable all Office macros

Nov 11, 2019 9:57:58 AM By Stu Sjouwerman
Graham Cluley warned: "It’s been almost 25 years since macro malware first reared its head, and it would be nice to think that the defences Microsoft has built into its Office suite in ...
Continue Reading

Specially Crafted ZIP Files Used to Bypass Secure Email Gateways

Nov 8, 2019 7:00:00 AM By Stu Sjouwerman
Attackers are always looking for new tricks to distribute malware without them being detected by antivirus scanners and secure email gateways. This was illustrated in a new phishing ...
Continue Reading

APWG Q3 Report: Phishing Attacks at Highest Level in Three Years

Nov 5, 2019 10:38:28 AM By Stu Sjouwerman
According to the APWG’s new Phishing Activity Trends Report, the number of phishing attacks continued to rise into the autumn of 2019. The total number of phishing sites detected by APWG ...
Continue Reading

Security in Three Keynotes

Nov 5, 2019 8:00:00 AM By Javvad Malik
I had the pleasure of attending (ISC)2 Congress this year in Orlando with my colleague and fellow advocate James McQuiggan.
Continue Reading

You Need To Start Thinking Differently About This Whole "Insider Threat" Concept

Nov 5, 2019 5:40:59 AM By Stu Sjouwerman
In order to defend against insider threats, you need an accurate picture of the problem. The CyberWire’s Carole Theriault spoke to a number of industry experts about insider threats and ...
Continue Reading

Healthcare Industry Names KnowBe4 As The 2019 Top Rated Platform For Cybersecurity Training & Education

Nov 4, 2019 10:22:19 AM By Stu Sjouwerman
Black Book Market Research LLC surveyed over 2,876 security professionals from 733 provider organizations to identify gaps, vulnerabilities and deficiencies that persist in keeping ...
Continue Reading

American Nikkei Employee Falls For Social Engineering Scam And Loses 29 Million Dollars

Nov 4, 2019 7:48:46 AM By Stu Sjouwerman
Phil Muncaster at InfoSec Mag had the (painful) scoop: "Media giant Nikkei has become the latest firm to suffer a humiliating Business Email Compromise (BEC), after it admitted losing ...
Continue Reading

Phishing Kits Hosted on More than Six Thousand Domains

Nov 4, 2019 6:01:26 AM By Stu Sjouwerman
Akamai’s 2019 State of the Internet / Security Report found that 6,035 domains were being used to host 120 different phishing kits, according to BleepingComputer. The phishing kits ...
Continue Reading

[Heads Up] Scam Of The Week: Phishing Attacks Using Better Benefits And Pay Raise Bait

Nov 2, 2019 9:25:02 AM By Stu Sjouwerman
Millions of employees use KnowBe4's Phish Alert Button to report suspect emails, and thousands of organizations share these reports with us. This has become a fascinating threat source, ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - October 2019

Nov 1, 2019 9:49:42 AM By Stu Sjouwerman
Check out the content and feature updates in the KnowBe4 platform for the month of October!
Continue Reading

Webroot Threat Researchers Take a Fresh Look at Phishing Tactics

Nov 1, 2019 7:15:50 AM By Stu Sjouwerman
Most people aren’t aware of how sophisticated phishing email templates and websites have become, according to David Dufour from Webroot. Dufour recently told the CyberWire that criminals ...
Continue Reading

KnowBe4 Achieves FedRAMP Authorization from the US Federal Government

Oct 31, 2019 11:44:08 AM By Stu Sjouwerman
On October 25, 2019, KnowBe4 became the first and only security awareness training and simulated phishing provider to receive FedRAMP authorized status. We are very proud of this ...
Continue Reading

Captain Awareness Has A Halloween Message For You

Oct 31, 2019 11:28:14 AM By Stu Sjouwerman
Think Before You Click!
Continue Reading

[Heads-Up] North Korean Malware Found On Indian Nuclear Plant's Network

Oct 31, 2019 7:05:09 AM By Stu Sjouwerman
I am not a happy camper. This is exactly why I have been insisting on security awareness training for employees at critical infrastructure organizations. This could have been a Real Life ...
Continue Reading

Ransomware Attack Causes School 'District-Wide Shutdown'

Oct 30, 2019 6:51:58 AM By Stu Sjouwerman
A ransomware attack hitting Las Cruces Public Schools forced the district to shut down the entire computer system to contain the infection.
Continue Reading

[NEW FEATURE] KnowBe4 Assessments Help Gauge Proficiency of Your Users in Security Awareness and Sentiment Towards Security Culture

Oct 29, 2019 8:56:36 AM By Stu Sjouwerman
Social engineering attacks continue to be the leading cause of compromised networks and data breaches. Today, organizations of all sizes are susceptible to these attacks and are ...
Continue Reading

Phishing Attack Targets Humanitarian Organizations

Oct 28, 2019 7:01:01 AM By Stu Sjouwerman
Researchers at Lookout have discovered an ongoing phishing campaign targeting humanitarian non-governmental organizations (NGOs), including UNICEF and the Red Cross. The infrastructure ...
Continue Reading

FBI Updates Initiative to Protect U.S. Elections from Cyberattacks

Oct 24, 2019 7:14:35 AM By Stu Sjouwerman
FBI has updated and expanded the resources and tools designed to help political campaigns, private businesses, and individuals to better understand and mitigate risks posed by foreign ...
Continue Reading

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

Oct 23, 2019 7:30:00 AM By Perry Carpenter
One of the greatest inventions in modern history is the Reese’s Peanut Butter Cup. I feel sorry for any human who existed before the “age of the cup” because they never got to know the ...
Continue Reading

Credential Phishing With a Masked URL

Oct 23, 2019 5:55:49 AM By Stu Sjouwerman
Cofense warns of a phishing campaign going after credentials for the Stripe online payment platform. The attackers are sending emails purporting to be from Stripe Support, telling the ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews