Many companies, fearful that their employees may click on malicious links in emails and put the business at risk, have begun sending out so-called “phish alert” messages. These are simulated phishing emails that contain many of the tell-tale signs of real attacks, complete with phony links that redirect to the company’s IT department. The object is to see how many, and perhaps which, employees report the email as phishing and how many take the bait and click on the links.
I feel like we are living inside such an experiment with this thread. -- Doug Ewell, CC, ALB | Lakewood, CO, US | ewellic.org
