Deepfake-driven fraud has caused $2.19 billion in losses globally, with $1.65 billion reported in 2025 alone, according to an analysis by Surfshark. More than half of these losses were due to investment scams using deepfakes of high-profile figures.
Deepfake-driven fraud has caused $2.19 billion in losses globally, with $1.65 billion reported in 2025 alone, according to an analysis by Surfshark. More than half of these losses were due to investment scams using deepfakes of high-profile figures.
John N Just, Ed.D. – Chief Learning Officer
What’s New: Celebrating World Password Day and Beyond
Happy May! This month, we are putting a major spotlight on World Password Day (May 7). While the “traditional” password might be evolving into passkeys and biometrics, the human element of authentication remains the #1 target for social engineers. To help you celebrate, we’ve released a dedicated suite of content designed to move your users beyond “Password123!” and into a mindset of strategic defense.
From deep dives into the psychology of a credential harvest to practical guides on mastering password managers, our updates are built to help you strengthen your organization’s defenses.
|
Just in time for World Password Day! |
World Password Day and You |
|
Cybersecurity Essentials for the Kingdom |
Identity Theft Explained |
|
Privileged User Security: Secure Windows Administration |
Report It! Use the Phish Alert Button (PAB) |
|
What is AI? |
Why Phishing Works |
|
Avoiding Gift Card Scams |
Fake Sites, Real Danger: Understanding Typosquatting Document One mistyped letter could lead to a fake website. Learn how scammers profit from your honest typos by mimicking trusted URLs to steal your data. |
|
Gift Card Scams: How They Work and How to Avoid Them |
Sir Hackalot: Royal Ravens Game Game Defend the castle in this fantasy-themed game. Sharpen your wits as you review messenger birds to distinguish legitimate royal decrees from dangerous phishing scrolls. |
|
Zero Trust: Verify Everything |
| 信頼が裏目に!取引先詐欺の手口と対策 (Betrayed by Trust: Understanding and Preventing Vendor Fraud ) Training Module Protect your organization from business email compromise. Learn to spot fradulent payment requests and implement verification steps to safeguard long-term partner relationships. *Available in Japanese only |
参考資料:信頼が裏目に!取引先詐欺の手口と対策 (Document: Betrayed by Trust: Understanding and Preventing Vendor Fraud ) Document A vital summary of scam tactics and prevention. Use this guide to enforce approval processes and multi-factor authentication for all financial requests. *Available in Japanese only |
|
ポスタ-:信頼が裏目に!取引先詐欺の手口と対策 (Poster: Betrayed by Trust: Understanding and Preventing Vendor Fraud ) |
NEW! – Quarterly Product Update Videos
At KnowBe4, we’re always adding new features and improving our products. Watch the latest Quarterly Product Update to catch up on all the fresh content and new features that we’ve added to your KnowBe4 platform over the last quarter.
Here’s the direct link to the KnowBe4 platform support article and video: https://support.knowbe4.com/hc/en-us/articles/360015575313-Video-KSAT-and-AIDA-Quarterly-Product-Update-April-2026
Here’s the direct link to the PhishER support article and video:
https://support.knowbe4.com/hc/en-us/articles/1500005726381-Video-PhishER-and-PAB-Quarterly-Product-Update-April-2026
To see all the features of the KnowBe4 platform, request your demo today!
KB4-CON is one week away, have you secured your spot? This year’s event is built to help you stay ahead of today’s biggest security challenges with sessions covering:
AI-driven threats and defenses: Understand how attackers are using AI and what it takes to defend against it
With over 40 breakout sessions, you’re sure to find plenty of reasons to join us in Orlando.
Microsoft warns that a new criminal threat actor dubbed “Storm-2755” is launching payroll-pirate attacks against Canadian users. These attacks use social engineering to compromise employee accounts and divert salary payments to attacker-controlled bank accounts.
The biggest challenge in email security today isn’t just detecting a threat; it’s the speed of response across a global landscape. As we head into the second half of 2026, the stakes with speed have gotten higher. According to SQ Magazine, AI-generated phishing attempts are 68% harder to detect than they were just a year ago, and the average cost of an AI-powered breach has climbed to $5.72 million.
A phishing campaign is targeting senior executives with social engineering attacks conducted over Microsoft Teams, according to researchers at ReliaQuest. The researchers believe former associates of the Black Basta criminal gang are running this operation.
Cyber-enabled crimes cost Americans nearly $21 billion in 2025, a 26% increase from the previous year, according to the FBI’s latest Internet Crime Report. Phishing, extortion, and investment scams were the most commonly reported attacks, with AI-related scams driving some of the costliest losses. Phishing was the top attack vector, with these attacks leading to more than $215 million in losses.
.jpg)
