5 Reasons Why SecurityCoach Is Awesome From the Knowbe4 blog! I’ve been doing computer security for over 34 years and in that time, I haven’t seen a lot of game-changing products. What I have seen is a lot of new products that claimed to be game-changers, but most ended up being slightly different variations of existing products with a lot of new marketing hype. How many times can I read “Next Generation”, “AI-Enabled”, or “Zero-Trust-Enabled” slapped on the same old tired products and not become a bit of a cybersecurity curmudgeon? Imagine my surprise to learn more about KnowBe4’s new Securi ..read more

Determining a policy on unsubscribing from newsletters and spam leaves most of us in a quandary. Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 offers up some advice in this blog post. Should You Click on Unsubscribe? Some common questions we get are “Should I click on an unwanted email’s ’Unsubscribe’ link? Will that lead to more or less unwanted email?” The short answer is that, in general, it is OK to click on a legitimate vendor’s unsubscribe link. But if you think the email is sketchy or coming from a source you would not want to validate your email address as valid and active ..read more

TAMPA BAY, FL KnowBe4 releases overall 2022 and Q4 2022 global phishing test reports and finds business-related emails continue to be utilized as a phishing strategy and reveal top holiday email phishing subjects KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced the results of its 2022 and Q4 2022 top-clicked phishing report. The results include the top email subjects clicked in phishing tests, top attack vector types, holiday phishing email subjects and more insightful information that reveal the most popular phishing ema ..read more

Seeing a big increase lately in “rewards” type spam getting through Office365 filters. Brand name impersonation phishing for credentials. 1 post - 1 participant Read full topic ..read more

Cross posted from our blog. Great tips from Roger Grimes, Knowbe4’s Data-Driven Defense Evangelis. “Phishing via Short Message Service (SMS) texts, what is known as smishing , is becoming increasingly common (some examples are shown below). There is probably not a person on Earth who does not get at least one smishing message a month. It is a big problem.” ’ Read the full blog post here. blog.knowbe4.com Here Is What You Can Do To Inspect SMS URL Links Before Clicking Phishing via Short Message Service (SMS) texts, what is known as smishing, is becoming increasingly common (some examples are ..read more

by Stu Sjouwerman 14Oct, 2022 Under the guise of determining applicant eligibility for a U.S. federal government job, this latest phishing attack plants the seed for a future attack on the victim organization. We’ve covered plenty of cyberattacks here that leverage a leaked version of Cobalt Strike Beacon to execute PowerShell scripts, log keystrokes, take screenshots, download files, and spawn other payloads. But normally, the use of Cobalt Strike Beacon has been covered in conjunction with a completed (and successful) attack on an organization. Read the full blog story on our blog and discus ..read more

KnowBe4 Phishing Test Results Reveal Trend Towards Business-Related Emails October 18, 2022 KnowBe4 releases Q3 2022 global phishing report and finds that more business-related email subjects are utilized as a phishing strategy KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced the results of its Q3 2022 top-clicked phishing report. The results include the top email subjects clicked on in phishing tests and reflect the shift from personal to business-related email subjects including internal requests and updates from Human ..read more

Combatting Rogue URL Tricks: Quickly Identify and Investigate the Latest Phishing Attacks Everyone knows you shouldn’t click phishy links. But are your end users prepared to quickly identify the trickiest tactics bad actors use before it’s too late? Probably not. Cybercriminals have moved beyond simple bait and switch domains. They’re now employing a variety of advanced social engineering techniques, like sneaky rogue URLs, to entice your users into clicking and putting your network at risk. Join Roger A. Grimes, KnowBe4’s Data-Driven Defense Evangelist, for this webinar as he shows you how to ..read more

KnowBe4’s latest quarterly report on top-clicked phishing email subjects is here. We analyze ‘in the wild’ attacks reported via our Phish Alert Button, top subjects globally clicked on in phishing tests, and top attack vector types. Top Phishing Emails Seen “In the Wild” are Mostly Business-Related Business phishing emails are the most clicked subject category globally. These are particularly effective because, left unanswered, they could potentially affect the user’s daily work, enticing employees to react quickly before thinking logically about the email’s legitimacy. The email source may be ..read more

Just released!!! Download from the link below! KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has released the new 2022 Phishing by Industry Benchmarking Report to measure an organization’s Phish-proneTM Percentage (PPP), which indicates how many of their employees are likely to fall for phishing or a social engineering scam. Find out how you are doing compared to your peers of similar size. As a security leader, you’re faced with a tough choice. Even as you increase your budget for sophisticated security software, your exposure to cyb ..read more