KnowBe4 Blog KnowBe4’s blog keeps you informed about the latest in human and agent security including social and prompt engineering, ransomware and phishing attacks.
- Perry Carpenter KB4-CON 2026 Q&A: Deepfakes & Deception
by Bree Fowler on May 27, 2026 at 8:45 pmIn just a couple years, deepfakes have gone from cartoonishly silly and largely academic exercises to sophisticated audio and video creations with the potential to trick just about anyone into believing they’re the real thing.
- Free Gift Fallacy: How Attackers Harvest Credit Cards via Fake Surveys
by KnowBe4 Threat Lab on May 27, 2026 at 8:30 pmLead Analysts: Jeewan Singh Jalal, Dilsha Dines, Karthikeyan Dharmaraj
- When Global Conflict Becomes a Cyber Weapon: How Iran Tensions and Other Stressful Events Fuel Social Engineering Attacks
by Erich Kron on May 27, 2026 at 4:00 pmWhen geopolitical tensions rise, whether due to conflicts like the current one involving Iran or other global flashpoints, many organizations focus on physical security, supply chains, or political implications. But there is another battlefield that lights up almost immediately: the human mind.
- CyberheistNews Vol 16 #21 [Heads Up] GitHub Breach Shows Developer Tools Are Social Engineering Targets
by KnowBe4 Team on May 27, 2026 at 1:30 pm - Alert: Extortion Groups Are Using Phishing Kits to Automate Their Attacks
by KnowBe4 Team on May 27, 2026 at 1:00 pmResearchers at Push Security have analyzed a phishing platform used by organized criminal threat actors like ShinyHunters and BlackFile, finding more than 400 domains linked to attacks launched by the phishing kit.
- Beyond the Chatbot: Why Your AI Agents are Your Newest (and Most Vulnerable) Colleagues
by KnowBe4 Team on May 26, 2026 at 9:00 pmThe era of “typing into a box” is over. For years, we viewed artificial intelligence as a digital assistant—a sophisticated autocomplete tool that waited for human input. But according to Martin Kraemer, KnowBe4’s CISO Advisor for Europe and the Middle East, that dynamic has shifted. We have moved from asking AI questions to giving AI jobs.
- Report: Adversarial Use of AI is Evolving
by KnowBe4 Team on May 26, 2026 at 4:00 pmThreat actors are increasingly augmenting their attacks with AI tools, according to researchers at Google’s Threat Intelligence Group (GTIG). For the first time, GTIG observed a threat actor using a zero-day exploit developed by AI, although Google blocked the attack before it succeeded. Threat actors also continue to use Large Language Models (LLMs) for research, reconnaissance, and malware development.
- AI Agent Governance Part 1 – Beyond the Chatbot: Mastering AI Agent Governance
by Anna Collard on May 26, 2026 at 1:00 pmIn 2024, we talked to AI. In 2026, AI is talking to our systems, our customers, and increasingly, acting on our behalf. With AI agents, we are moving AI from a tool to an actor, from assistance to agency and from outputs to actions. And that changes the nature of risk. AI agents plan, execute, and interact with the world on our behalf. They send emails, move data, trigger workflows, and increasingly operate across systems without human intervention.
- Report: The Tycoon 2FA Phishing Kit Has Evolved
by KnowBe4 Team on May 22, 2026 at 9:00 pmThe Tycoon 2FA phishing-as-a-service platform is now using OAuth device code phishing to compromise devices that are protected by multifactor authentication, according to eSentire’s Threat Response Unit (TRU). Tycoon 2FA is one of the most active phishing kits and has resumed normal operations following a law enforcement takedown earlier this year.
- KnowBe4 CEO Bryan Palma Q&A From KB4-CON 2026
by KnowBe4 Team on May 22, 2026 at 6:44 pmBy Bree Fowler, contributor Artificial intelligence is dramatically changing the digital threat landscape and how security professionals fight back against the cybercriminals that use these new and more powerful tools.
