this post was submitted on 21 May 2026
505 points (99.0% liked)
Lemmy Shitpost
39953 readers
4446 users here now
Welcome to Lemmy Shitpost. Here you can shitpost to your hearts content.
Anything and everything goes. Memes, Jokes, Vents and Banter. Though we still have to comply with lemmy.world instance rules. So behave!
Rules:
1. Be Respectful
Refrain from using harmful language pertaining to a protected characteristic: e.g. race, gender, sexuality, disability or religion.
Refrain from being argumentative when responding or commenting to posts/replies. Personal attacks are not welcome here.
...
2. No Illegal Content
Content that violates the law. Any post/comment found to be in breach of common law will be removed and given to the authorities if required.
That means:
-No promoting violence/threats against any individuals
-No CSA content or Revenge Porn
-No sharing private/personal information (Doxxing)
...
3. No Spam
Posting the same post, no matter the intent is against the rules.
-If you have posted content, please refrain from re-posting said content within this community.
-Do not spam posts with intent to harass, annoy, bully, advertise, scam or harm this community.
-No posting Scams/Advertisements/Phishing Links/IP Grabbers
-No Bots, Bots will be banned from the community.
...
4. No Porn/Explicit
Content
-Do not post explicit content. Lemmy.World is not the instance for NSFW content.
-Do not post Gore or Shock Content.
...
5. No Enciting Harassment,
Brigading, Doxxing or Witch Hunts
-Do not Brigade other Communities
-No calls to action against other communities/users within Lemmy or outside of Lemmy.
-No Witch Hunts against users/communities.
-No content that harasses members within or outside of the community.
...
6. NSFW should be behind NSFW tags.
-Content that is NSFW should be behind NSFW tags.
-Content that might be distressing should be kept behind NSFW tags.
...
If you see content that is a breach of the rules, please flag and report the comment and a moderator will take action where they can.
Also check out:
Partnered Communities:
1.Memes
10.LinuxMemes (Linux themed memes)
Reach out to
All communities included on the sidebar are to be made in compliance with the instance rules. Striker
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
People don't think too good when they're emotional, so this would be very effective.
Reminds me of the COVID relief payment simulated phishing emails that made headlines. People complained that they had to take additional training after clicking some "Click here to retrieve your COVID relief funds" link during the early days of the pandemic that turned out to actually just be their corporate IT team sending a simulated phishing attack. They expected that this was the official government relief page that they have been waiting for, and were excited for the financial relief. Many people claimed that it was not okay do "prey" on people's desperation at this point, but these simulated phishing emails were just getting people wary of the real thing. Actual scammers who were actually attempting to steal your money were absolutely sending these types of COVID relief phishing emails for real. So, these simulated emails were just preparing users in case one if the real spam emails happened to slip through the filters.
People get mad when they feel like they weren't ready for training, but to your point, that's why we train. To make you more aware when the real thing comes. Check all of your links. Verify it's real before just clicking through.
The issue has come from some companies threatening jobs when people don't perform properly. I would love it if people saw this as just training and not a personal attack. You fell for the trick now how do you not get tricked next time? It might help if we did a quarterly report and put it on the intranet for people to see how many got clicked. Don't make it a Wall-of-Shame, but a report to see how good things have been going. Put out sample emails that were the trickiest and what were the tells. Make Security a thing that is a growth aspect, not a shaming tactic.
My last job posted the failure rate for every single phishing simulation, and nobody ever felt called out as a result.
We had between 1-10% fail any given test, but our ceo got phished successfully by an actual scam, and that had ripple effects because his account was compromised and sent out further phishing. So we all sort of knew that even those at the top fall for it, which made people who failed feel better.
Yeah, at my last job we had fake phishing emails and if you clicked the link on them then the IT manager would see your name lit up on a dashboard. They were sent out randomly like a regular phishing email. The point is it's a pop quiz.
The thing that annoys me is that I still need to be careful when clicking on links in emails to my work address, despite having my web browser locked down to the nines. I just wanted to see what the page looked like, security peeps! I'm not a risk! I knew what it was!
Still had to go through additional training, mutter grumble....
Phishing attempts are already effective. It's scary how often people fall for it.