Mastodawn

alissa Nov 8, 2022

What's your opinion #phishing employees/phish testing? Do you think it works? Is certain testing scenarios unethical (like fake bonuses)? Drop opinions in the comments.

Good training, keep it

37.4%

Ineffective but don't quit

18.7%

Stop phish testing!

26%

Other/See Results

17.9%

Poll ended at Nov 11, 2022 at 4:55pm.

Show thread

if(realLife);elif(fantasy);fi;

@dnsprincess Worth it and it works if the results are socialized and the employees know how their actions directly result in the overall security/vulnerability of the company.

I work in the hospitality vertical. We managed, through deliberate and repeated trainings and through socialization of the message, to reduce our click rate on email tests from approximately 30% which is pretty average across the industry, to 1% globally.

Appropriately administered and with the right type of buy-in, phish testing programs work.