Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

98% Spike in Phishing Campaigns Leveraging Russian (.ru) Domains

Mar 14, 2025 10:05:36 AM By KnowBe4 Threat Lab
A KnowBe4 Threat Lab publication Authors: Martin Kraemer, Jeewan Singh Jalal, Anand Bodke, and James Dyer EXECUTIVE SUMMARY: We observed a 98% rise in phishing campaigns hosted on Russian ...
Continue Reading

Make Your Real Emails Less Phishy

Mar 13, 2025 9:14:05 AM By Roger Grimes
I infrequently get emails from customers who are frustrated because their employer sent out some legitimate mass email to all employees that unfortunately had all the hallmarks of a ...
Continue Reading

Protect Yourself: Social Engineering Fuels SIM Swapping Attacks

Mar 13, 2025 9:13:20 AM By Stu Sjouwerman
Group-IB has published a report on SIM swapping attacks, finding that attackers continue to use social engineering to bypass technical security measures.
Continue Reading

245% Increase in SVG Files Used to Obfuscate Phishing Payloads

Mar 12, 2025 9:11:12 AM By KnowBe4 Threat Lab
A KnowBe4 Threat Labs Publication Authors: James Dyer and Cameron Sweeney The KnowBe4 Threat Research team has observed a sustained increase in the use of Scalable Vector Graphics (SVG) ...
Continue Reading

AI and AI-agents: A Game-Changer for Both Cybersecurity and Cybercrime

Mar 12, 2025 9:10:02 AM By Anna Collard
Artificial Intelligence (AI) is no longer just a tool—it is a game changer in our lives, our work as well as in both cybersecurity and cybercrime.
Continue Reading

Beware: Malvertising Campaign Hits Nearly a Million Devices

Mar 12, 2025 9:09:33 AM By Stu Sjouwerman
Microsoft warns that a widespread malvertising campaign hit nearly one million devices around the world. The campaign, which began on illegal streaming sites, impacted both consumer and ...
Continue Reading

U.S. Justice Department Charges China’s Hackers-for-Hire Working IT Contractor i-Soon

Mar 11, 2025 10:13:11 AM By Stu Sjouwerman
The U.S. Justice Department has charged ten Chinese nationals for acting as hackers-for-hire for the Chinese government.
Continue Reading

The Myth of Geographic Immunity in Cybersecurity

Mar 11, 2025 10:12:27 AM By Javvad Malik
In the realm of cybersecurity, perception often diverges from reality. A common misconception is that nation-state cybercriminals primarily target the United States.
Continue Reading

CyberheistNews Vol 15 #10 [Heads Up] Sophisticated Phishing Attack Uses New JavaScript Obfuscation Trick

Mar 11, 2025 9:11:48 AM By Stu Sjouwerman
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from February 2025

Mar 10, 2025 9:18:18 AM By Stu Sjouwerman
Check out the February updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Autonomous Agentic AI-Enabled Deepfake Social Engineering Malware is Coming Your Way!

Mar 10, 2025 9:17:27 AM By Roger Grimes
I’ve been in the cybersecurity industry for over 36 years. Surprisingly, hackers and malware haven't changed all that much.
Continue Reading

Your KnowBe4 Fresh Content Updates from February 2025

Mar 7, 2025 9:17:31 AM By Stu Sjouwerman
Check out the 58 new pieces of training content added in February, alongside the always fresh content update highlights, new features and events.
Continue Reading

Warning: Ransomware Threats Increased Fourfold in 2024

Mar 7, 2025 9:14:54 AM By Stu Sjouwerman
Researchers at Barracuda observed a fourfold increase in ransomware threats last year, driven by increasingly sophisticated ransomware-as-a-service (RaaS) operations.
Continue Reading

Software Will Become Agentic and the Security Lessons We Need To Learn

Mar 7, 2025 9:14:24 AM By Roger Grimes
Ever since OpenAI publicly released ChatGPT in late 2022, people have been predicting the end of programmers.
Continue Reading

Invoice or Impersonation? 36.5% Spike in Phishing Attacks Leveraging QuickBooks’ Legitimate Domain in 2025

Mar 7, 2025 9:13:54 AM By KnowBe4 Threat Lab
A KnowBe4 Threat Lab Publication Authors: Martin Kraemer, James Dyer, and Lucy Gee Much like sending a phishing email from a compromised account, cybercriminals can boost the ...
Continue Reading

AI Literacy: A New Mandate Under the EU AI Act - What Your Organization Needs to Know

Mar 6, 2025 9:55:03 AM By Martin Kraemer
The European Union's AI Act is ushering in a new era of workplace requirements, with AI literacy taking center stage. Under Article 4, organizations must now ensure their workforce is ...
Continue Reading

Data at Risk: 96% of Ransomware Attacks Involve Data Theft

Mar 6, 2025 9:54:08 AM By Stu Sjouwerman
A new report from Arctic Wolf has found that 96% of ransomware attacks now involve data theft as criminals seek to force victims to pay up.
Continue Reading

[Heads Up] Sophisticated Phishing Attack Uses New JavaScript Obfuscation Trick

Mar 5, 2025 9:11:50 AM By Stu Sjouwerman
Researchers at Juniper Threat Labs warn that phishing attacks are utilizing a new obfuscation technique to hide malicious JavaScript.
Continue Reading

Q&A with Martin Kraemer on Information Sharing in Cybersecurity

Mar 5, 2025 9:11:22 AM By Martin Kraemer
Recently, Dr. Martin J. Kraemer, Security Awareness Advocate at KnowBe4, and Dr. William Seymour, Lecturer in Cybersecurity at King’s College London released a Whitepaper called: ...
Continue Reading

Primary Refresh Tokens Aren’t Your Parent’s Browser Token

Mar 4, 2025 9:40:59 AM By Roger Grimes
If you haven’t been paying attention closely enough, a new type of access control token, like a super browser token on steroids, is becoming hackers' theft target of choice.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews