• hypnicjerk@lemmy.world
    link
    fedilink
    arrow-up
    104
    ·
    edit-2
    1 year ago

    if an end user can serve as an entry point to the entire domain for ransomware, the end user hasn’t failed, IT has.

  • jjagaimo@lemmy.ca
    link
    fedilink
    English
    arrow-up
    64
    ·
    1 year ago

    Today I got an email from management, something along the lines of “you didnt click the link in this email we sent as a required questionnaire about phishing, some people reported it as phishing: a reminder, all emails from IT@company.com are not phishing”

    There was no previous email

    I checked the message details and it said “THIS IS A PHISHING TEST BY external company”

    It was a phishing test disguised as an urgent reminder to answer a phishing questionnaire, replying to a nonexistent email. I can’t wait until Monday when they round up everyone who clicked the link

    • hardware26@discuss.tchncs.de
      link
      fedilink
      arrow-up
      19
      ·
      1 year ago

      This is a good one. We get standard phishing tests which make no sense. It is usually a person I don’t know, from a company I haven’t heard of asking me to edit/review a file they share. People who design these tests should know that people do NOT jump into the opportunity of editing/reviewing files or receiving tasks. I imagine real phishing attacks must be smarter than this.

      • chiliedogg@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        1 year ago

        I work for a small-ish but fast-growing municipality, and we’re getting increasingly well-targeted actual attacks. Instead of posing as “The IT department” they’re posing as my boss or the City Manager by name.

        This week they even started name-dropping the conference most of the directors were actually attending as an excuse why we wouldn’t be able to reach out and talk to them before the "request$ was due.

    • ditty@lemm.ee
      link
      fedilink
      arrow-up
      12
      ·
      1 year ago

      Wow damn that’d trick whole swaths of our org 🤦. Sad how many people we still get with the super obvious “Free $5 on Venmo” phishing tests…

  • Usually a company needs a ransomware attack or some other digital tragedy before they learn the importance of security.

    Sometimes they need a few incidents, and need to be reminded when upper management deprioritizes IT security.

  • gmtom@lemmy.world
    link
    fedilink
    arrow-up
    3
    ·
    1 year ago

    I don’t mind, that not the support departments job, probably more like Info sec or dev ops or something.