Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

Voice Phishing Kits Give Threat Actors Real-Time Control Over Attacks

Feb 12, 2026 By KnowBe4 Team In KnowBe4
Researchers at Okta warn that a series of phishing kits have emerged that are designed to help threat actors launch sophisticated voice phishing (vishing) attacks that can bypass multifactor authentication. “The most critical of these features are client-side scripts that allow threat actors to control the authentication flow in the browser of a targeted user in real-time while they deliver verbal instructions or respond to verbal feedback from the targeted user,” Okta says.
Read Post

Training Humans and AI Agents

Feb 11, 2026 By KnowBe4 | Human Risk Management In KnowBe4
Managing the risks associated with the increasing use of AI agents and co-pilots is critical for every organization. A key challenge is that AI agents draft documents and influence decisions but they operate without a true understanding of a company's rules, culture, or risk. Like humans, AI agents are susceptible to failure. Humans are socially engineered, while AI agents are prompt engineered, and AI agents may "hallucinate" when context is missing, similar to how humans guess.
View Video
knowbe4

New Malware Kit Promises Guaranteed Publication in the Chrome Web Store

Feb 6, 2026 By KnowBe4 Team In KnowBe4
A new malware-as-a-service (MaaS) kit called “Stanley” is offering users guaranteed publication in the Chrome Web Store, bypassing Google’s security verification process, according to researchers at Varonis. “For $2,000 to $6,000, Stanley provides a turnkey website-spoofing operation disguised as a Chrome extension, with its premium tier promising guaranteed publication on the Chrome Web Store,” Varonis says.
Read Post
knowbe4

Attackers Can Use LLMs to Generate Phishing Pages in Real Time

Feb 5, 2026 By KnowBe4 Team In KnowBe4
Researchers at Palo Alto Networks’ Unit 42 warn of a proof-of-concept (PoC) attack technique in which threat actors could use AI tools to generate malicious JavaScript in real time on seemingly innocuous webpages. “Once loaded in the victim's browser, the initial webpage makes requests for client-side JavaScript to popular and trusted LLM clients (e.g., DeepSeek and Google Gemini, though the PoC could be effective across a number of models),” the researchers write.
Read Post
knowbe4

Report: One in Ten UK Companies Wouldn't Survive a Major Cyberattack

Feb 4, 2026 By KnowBe4 Team In KnowBe4
A new survey by Vodafone Business found that more than 10% of companies in the UK would likely go out of business if they were hit by a major cyber incident, such as a ransomware attack, Infosecurity Magazine reports. Additionally, 71% of business leaders believe at least one of their employees would fall for a convincing phishing attack, and fewer than half (45%) of organizations have ensured that all of their employees have received basic cyber awareness training.
Read Post

Mastering Post-Quantum Cryptography and AI-Driven Cyber Threats

Feb 4, 2026 By KnowBe4 | Human Risk Management In KnowBe4
The cybersecurity landscape is undergoing a paradigm shift driven by two unstoppable forces: Generative AI and Shor’s Algorithm-capable Quantum Computing. As we approach "Q-Day," the window for organizations to transition to quantum-resistant architectures is closing. Modern threat actors are no longer just using brute force; they are utilizing Quantum-AI convergence to automate vulnerability discovery and bypass legacy encryption. This session provides a roadmap for transitioning from traditional cybersecurity to a Post-Quantum Cryptography (PQC) framework.
View Video
knowbe4

Warning: A LinkedIn Phishing Campaign is Targeting Executives

Feb 3, 2026 By KnowBe4 Team In KnowBe4
A phishing campaign is abusing LinkedIn private messages to target executives and IT workers, according to researchers at ReliaQuest. The messages attempt to trick victims into opening an archive file, which will install a legitimate pentesting tool. “A critical element of this attack was the use of a legitimate, open-source Python script designed for pen-testing,” ReliaQuest says.
Read Post
knowbe4

Starting the Year with Cyber Intention: Human-Centric Insights from the Global Cybersecurity Outlook 2026

Jan 29, 2026 By Anna Collard In KnowBe4
One of my first intentional “to-dos” this year has been spending time with the World Economic Forum’s Global Cybersecurity Outlook 2026, a report I was privileged to actively contribute to over the past year. For KnowBe4 customers, this report offers more than trend analysis. It provides a baseline of where organizations stand today, what separates resilient organizations from less resilient ones, and why the human factor is now central to cyber resilience.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.