• 31 Posts
  • 239 Comments
Joined 3 months ago
cake
Cake day: July 15th, 2025

help-circle





  • Yep.

    Most of them are phishing test emails (where the org sends out fake “phishing” emails which have a UUID link tied to your email address) so they KNOW who clicks on these and who reports them. Until I stopped giving a fuck, I had reported 100% of them and clicked on 0. But since that doesn’t let you “test out” of the 45 minute quarterly security awareness training, I stopped wasting my time and just delete them


  • Sometimes I wonder whether all this “security awareness training” has any effect at all.

    Nope lol.

    My org sends out phishing tests randomly. I used to report every single one and have never clicked on any. But we all have to take the stupid training regardless of whether we successfully detect/report them or not. So I’ve just stopped reporting them since there’s no incentive whatsoever.