08-09-2018, 04:45 PM
The second rule - Read Rule One again, and never login from a link provided in an email.
I send phishing emails to the banks they're 'from', even though I don't have an account with all but one.
For what it's worth, which isn't much, I include a short note about how we learn to follow the two rules Joe mentioned and ignore the links in the banks' genuine emails.
I further mention that it would be good to encourage people to go to the website, and not include links at all, or at least that would lead to logging in. Convenience works against security.
Obviously I don't get any response and this exercise is no more than shoveling sand against the tide. But I feel a little better when shaking my brolly against the sky.
I send phishing emails to the banks they're 'from', even though I don't have an account with all but one.
For what it's worth, which isn't much, I include a short note about how we learn to follow the two rules Joe mentioned and ignore the links in the banks' genuine emails.
I further mention that it would be good to encourage people to go to the website, and not include links at all, or at least that would lead to logging in. Convenience works against security.
Obviously I don't get any response and this exercise is no more than shoveling sand against the tide. But I feel a little better when shaking my brolly against the sky.