• Brkdncr@lemmy.world
    link
    fedilink
    English
    arrow-up
    15
    ·
    2 months ago

    As someone who actively defends and trains against these attacks, I still see people downloading and executing suspicious files regularly.

    • Echo Dot
      link
      fedilink
      English
      arrow-up
      6
      ·
      2 months ago

      It’s always the same people in my experience. No matter how many times they go through the training it never seems to stick.

    • Chozo@fedia.io
      link
      fedilink
      arrow-up
      4
      arrow-down
      4
      ·
      2 months ago

      Yeah, I dunno what the facepalm is supposed to be about. 99% of the rest of the world has about 1% of the tech knowledge that the average Lemmy user is going to have. These scams are wildly effective, and it’s not really a matter of general intelligence as far as who falls victim to them.

      • QuadratureSurfer@lemmy.world
        link
        fedilink
        English
        arrow-up
        12
        ·
        2 months ago

        For me, the article makes it seem like there’s some new announcement that the FBI has put out about a newly discovered vulnerability. Turns out, the announcement is about vulnerabilities we’ve known about for a long time.

      • schizo@forum.uncomfortable.business
        link
        fedilink
        English
        arrow-up
        7
        ·
        2 months ago

        Hell I almost got snagged by one recently, and a goodly portion of my last job was dealing with phishing sites all day.

        They’ve gotten good with making things look like a proper email from a business that would be sending that kind of email, and if you’re distracted and expecting something you can have at least a moment of ‘oh this is probably legitimate’.

        The giveaway was, hilariously, a case of using ‘please kindly’ and ‘needful’ which uh, aren’t something this particular company would have actually used as phraseology in an email, so saved by scammers not realizing that americans at least don’t actually use those two phrases in conversation.

      • Echo Dot
        link
        fedilink
        English
        arrow-up
        6
        ·
        edit-2
        2 months ago

        You don’t need to have advanced technological know-how to know about phishing scams. Practically every company has a boring training course you have to go through at least once a year.

        I work in cyber security and they still feel the need to tell us about phishing scams, like we don’t know about 100 other scarier things.

      • LunchMoneyThief@links.hackliberty.org
        link
        fedilink
        English
        arrow-up
        5
        arrow-down
        1
        ·
        2 months ago

        Years ago I might have agreed, but with digital technology having become so central to one’s daily life I find it hard to excuse those who fail to educate themselves about the very basics.