Rail Firm Staff Fail ‘Bonus’ Phishing Test, Chaos Ensues - Security Boulevard

COVID Pretext FAIL: “Click here to claim your bonus pay,” said email from a British train company, signed by the firm’s chief. Hundreds of @WestMidRailway employees did exactly that. Because of course they did.

What a kick in the teeth for staff who’ve been putting their health on the line since early 2020. OTOH, phishing exercises are an established part of staff #infosec … errm … training. In today’s #SBBlogwatch, we’re deeply conflicted. At @SecurityBlvd: https://t.co/0kxSnG6mU0

— @Richi 😷 Jennings (@RiCHi) May 12, 2021