Stu Sjouwerman

Featured in:

linkedin.com Favicon

businessinsider.com Favicon

forbes.com Favicon

newsweek.com Favicon

entrepreneur.com Favicon

fastcompany.com Favicon

ibtimes.com Favicon

flipboard.com Favicon

thenextweb.com + 49 more

Articles

CyberheistNews Vol 15 #15 [HEADS UP] North Korea Expands Its Fraudulent IT Worker Operations

1 week ago | blog.knowbe4.com | James Dyer |James McQuiggan |Stu Sjouwerman

64% of Australian Organizations Hit by Ransomware Were Forced to Halt OperationsIllumio's recent Global Cost of Ransomware Study found that 64% of Australian companies hit by ransomware had to shut down operations as a result. Additionally, 43% of these organizations reported a significant loss of revenue, and 39% lost customers as a result of an attack. Most respondents indicated that reputational damage has overtaken regulatory fees as the most costly effect of a ransomware attack.
5 AI-related cyber-defense predictions for 2025

Jan 14, 2025 | cybersecasia.net | Stu Sjouwerman

In 2024, the world witnessed cyberthreats evolving faster than before, primarily due to the rise in the number of and popularity of AI tools. These tools assist cybercriminals in refining and making attack tactics more sophisticated and more difficult to recognize, while helping cybersecurity professionals defend against attacks more effectively. 1.
CyberheistNews Vol 15 #02 [HEADS UP] Credential Phishing Increased by 703% in H2 2024

Jan 14, 2025 | blog.knowbe4.com | Stu Sjouwerman

Phishing Campaign Abuses Legitimate Services to Send PayPal RequestsA phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet's Chief Information Security Officer (CISO) Dr. Carl Windsor. Windsor found that the threat actor registered a free MS365 test domain and used it to create a distribution list containing targets' email addresses. The scammer then used this distribution list to send payment requests via PayPal web portal.
Phishing for Gamers: Fake Offers Invite Gamers to Test New Gaming Titles

Jan 8, 2025 | blog.knowbe4.com | Stu Sjouwerman

A phishing campaign is targeting users with phony offers to beta test new video games, according to researchers at Malwarebytes. The phishing messages are sent via Discord, email, or text message. The messages purport to come from a game developer, and include a link to download an archive supposedly containing the game’s installer.
CyberheistNews Vol 15 #01 [No Time to Waste] The 2025 Cybersecurity Tightrope: What's Next for The World?

Jan 7, 2025 | blog.knowbe4.com | Stu Sjouwerman

[No Time to Waste] The 2025 Cybersecurity Tightrope: What's Next for The World? Here we go again: as the Trump Administration steps into office on January 20, the U.S. faces a cybersecurity landscape riddled with challenges. From state- sponsored hacks to the relentless tide of ransomware, the stakes have never been higher. And it's the same all over the world. Let's rewind a bit. When the Biden Administration took over four years ago, the cybersecurity outlook was already grim.
Credential Phishing Increased by 703% in H2 2024

Jan 6, 2025 | blog.knowbe4.com | Stu Sjouwerman

Credential phishing attacks surged by 703% in the second half of 2024, according to a report by SlashNext. Phishing attacks overall saw a 202% increase during the same period. “Since June, the number of attacks per 1,000 mailboxes each week has increased linearly,” the researchers write. “Currently, we are capturing close to one advanced attack per mailbox each week. As we reach the 1,000 threshold, this translates to nearly one advanced attack for every single mailbox each month.
2025 Predictions: The Impact Of AI On Cybersecurity

Jan 6, 2025 | forbes.com | Stu Sjouwerman

As we head into 2025, AI will assist both attackers and defenders in ways previously unimagined, reshaping the cybersecurity industry as we know it.
The Intersection of AI and OSINT: Advanced Threats On The Horizon

Dec 26, 2024 | securityweek.com | Stu Sjouwerman

Intelligence operations have undergone a profound transformation. Gone are the days when intelligence gathering relied purely on information obtained from human and other restricted sources. Today, much of the intelligence is publicly available – if one knows where and how to find it. This practice, known as Open Source Intelligence (OSINT), has emerged as an essential tool, especially in cybersecurity. Traditionally, OSINT proved to be a powerful tool for defenders.
Five under-the-radar phishing scams you may not know of

Dec 20, 2024 | fastcompany.com | Stu Sjouwerman

Knowing about these lesser-known phishing threats will help you and your business avoid becoming the next victim.
Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Dec 10, 2024 | blog.knowbe4.com | Stu Sjouwerman

Researchers at Silent Push warn that a phishing campaign is using malicious Google Ads to conduct payroll redirect scams. The attackers are buying search ads with brand keywords to boost their phishing pages to the top of the search results. “We have identified hundreds of domains primarily focused on Workday users and high-profile organizations, including the California Employment Development Department (EDD), Kaiser Permanente, Macy’s, New York Life, and Roche,” the researchers write.

Contact details

Emails

[email protected]

Socials & Sites

Try JournoFinder For Free

Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.

Start Your 7-Day Free Trial →