Allan Svelmøe HansenBeing subjected to some 'security training' at work, like "how to spot false domains" and "phising emails".
The courses are so poor that I think they harm more than they benefit because people fall into false sense of security of their ability to spot them because it's so easy in the training.
It's just "next, next, next - pick obvious silly answer - next next next".
No need to read or think about the material.
It's mandatory to fulfil safety standards measurements, but such training does not need to be so poorly made - it just makes it more dangerous than not.
And yes, I know some people fall for the obvious and that we as tech people are more knowledgable, but still.....just targeting lowest common denominator is not a good benchmark.