3
That time my boss clicked a fake invoice link and locked our whole office network
It was a Tuesday morning in our Chicago office when my boss got an email that looked exactly like our regular invoice from our paper supplier. He clicked the link, and within 10 minutes, our entire network was locked by ransomware. We had to shut everything down for two days while we restored from our last good backup on the external drive. What's the best way you've found to train non-tech people to spot these kinds of phishing emails?
3 comments
Log in to join the discussion
Log In3 Comments
gavin_reed28d agoMost Upvoted
Man, the "looked exactly like our regular invoice" part is the killer, isn't it? I once fell for one pretending to be a shipping notice because I was actually waiting for a package. We had this training where they sent us fake phishing emails and if you clicked, you got signed up for a mandatory class. The shame of having to go to that dumb class in the break room was way more effective than any memo. Maybe try that? The public embarrassment really sticks with you.
7
rileyl9828d ago
Ever try sending those fake phishing tests from a coworker's actual inbox? Makes you double-check the sender every single time...
0
phoenix62513d agoTop Commenter
Ugh, that mandatory class idea is brutal but probably works. My old job just sent out a snarky company-wide email listing the departments with the most clicks. Nothing motivates like trying to avoid being the reason your whole team gets called out.
1