Threat Alert: CREDENTIAL PHISHING Attacks Abuse KnowBe4 Brand

• A series of of credential phishing attacks impersonating the KnowBe4 cybersecurity training platform has been identified.
• The emails claim the recipient has a set number of days remaining to complete required training assignments.
• Both the internal link to the alleged training and the sender address are personalized, containing target organization and recipient information.
• Following the link to the purported training leads to a credential phishing page that harvests the recipient’s Microsoft credentials.
   

Key Action: Report Suspicious Emails 

• Go beyond surface clues. Familiar logos, branding, and names are not automatic indicator that an email is safe.  Cybercriminals often imitate well know organizations.
• Remember cybercriminals take advantage of strong emotions. An email warning of only three days to complete training can be stressful. Remember cybercriminals capitalize on moments of anxiety and the difficulty in thinking clearly in such situations.
• Confirm what platforms your organization uses for training. If you receive a training email, especially one warning of a tight deadline, confirm its legitimacy with the correct people in your organization. If your organization does not use the training platform, that is a red flag.
• Report ANY suspicious emails using the Phish Alarm button.