Kayami
@kayami.bsky.social
Information Security by trade, anime watcher and gamer by hobby. I don't post very often.
I also feel like much of the success in reducing click rates on phishing messages is due to making users afraid to interact with email in general which is counter-productive.
Sure, it can be good to educate users on common phishing attacks and methods, but I feel punishment is not the way.
Sure, it can be good to educate users on common phishing attacks and methods, but I feel punishment is not the way.
February 7, 2025 at 2:35 PM
I also feel like much of the success in reducing click rates on phishing messages is due to making users afraid to interact with email in general which is counter-productive.
Sure, it can be good to educate users on common phishing attacks and methods, but I feel punishment is not the way.
Sure, it can be good to educate users on common phishing attacks and methods, but I feel punishment is not the way.
The need to conduct phishing simulations due to insurance and other reqs frustrates me so much.
Phishing simulations feel more like punishment than education, and it seems like the focus is often on blaming victims rather than implementing mitigations for when phishing is successful.
Phishing simulations feel more like punishment than education, and it seems like the focus is often on blaming victims rather than implementing mitigations for when phishing is successful.
February 7, 2025 at 2:35 PM
The need to conduct phishing simulations due to insurance and other reqs frustrates me so much.
Phishing simulations feel more like punishment than education, and it seems like the focus is often on blaming victims rather than implementing mitigations for when phishing is successful.
Phishing simulations feel more like punishment than education, and it seems like the focus is often on blaming victims rather than implementing mitigations for when phishing is successful.