KnowBe4 Security Awareness Training Blog KnowBe4’s blog keeps you informed about the latest in security including social engineering, ransomware and phishing attacks.
- Report: AI-Powered Phishing Fuels Ransomware Losses
by KnowBe4 Team on September 12, 2025 at 7:00 pmAI-powered social engineering attacks are significantly more successful than traditional attacks, according to a new report from cyber risk management firm Resilience.
- Phishing Campaign Abuses iCloud Calendar Invites
by KnowBe4 Team on September 11, 2025 at 9:00 pmAttackers are abusing iCloud Calendar invites to send phishing messages that pose as PayPal notifications, BleepingComputer reports. Since the messages are sent from Apple’s infrastructure, they’re more likely to bypass security filters.
- FBI Issues Guidance for Avoiding Deepfake Scams
by KnowBe4 Team on September 11, 2025 at 8:00 pmThe FBI and the American Bankers Association (ABA) have issued a joint advisory warning of the growing threat posed by AI-generated deepfake scams.
- PayPal Scam From PayPal
by Roger Grimes on September 11, 2025 at 6:30 pmOne of the most common human risk management recommendations is for users to hover over URL links of unexpected messages to see if the involved DNS domain is legitimate or not for the sending company involved.
- Report: Shadow AI Poses an Increasing Risk to Organizations
by KnowBe4 Team on September 10, 2025 at 8:30 pmThe use of “shadow AI” is an increasing security risk within organizations, according to a new report from Netskope.
- “Yep, I got pwned. Sorry everyone, very embarrassing.”
.jpg "\"Yep, I got pwned. Sorry everyone, very embarrassing.\"")
by Martin Kraemer on September 10, 2025 at 7:15 pmIn essence, that is the disclosure and notification message that the open-source developer “qix” sent to the world when he was social engineered to give up access credentials to his GitHub account.
- CyberheistNews Vol 15 #36 One of the Biggest Mysteries in Cybersecurity: Why Don’t We Demand This?
by KnowBe4 Team on September 9, 2025 at 1:00 pm - Smishing Campaign Targets California Taxpayers With Phony Refund Offers
by KnowBe4 Team on September 5, 2025 at 7:30 pmThe State of California’s Franchise Tax Board (FTB) has warned of an ongoing SMS phishing (smishing) campaign targeting residents, Malwarebytes reports.
- Advanced Educational Competition – Ask Your Employees To Submit Their Best Phishingby Roger Grimes on September 5, 2025 at 5:30 pm
I occasionally get human risk management (HRM) administrators asking me to help them with ideas of “contests” to better educate their end-users.
- Warning: New Spear Phishing Campaign Targets Executives
by KnowBe4 Team on September 5, 2025 at 3:30 pmResearchers at Stripe warn of a wave of spear phishing attacks targeting C-suite employees and senior leadership across a wide range of industries.
