this post was submitted on 16 Oct 2025
68 points (100.0% liked)

Pulse of Truth

1671 readers
23 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago
MODERATORS
krogoth@infosec.pub
68
77% of security leaders say they'd fire staff who fall for phishing scams, even though they've done the same thing (www.itpro.com)
submitted 3 days ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub
7 comments fedilink hide all child comments
 

A new report uncovers worrying complacency amongst IT and security leaders

top 7 comments
sorted by: hot top controversial new old
[–] Noite_Etion@lemmy.world 21 points 3 days ago (1 children)

Maybe the staff need a longer password with special characters, that ought to fix it.

[–] snooggums@piefed.world 15 points 3 days ago (1 children)

Ok, but they must be changed every 45 days and they can never reuse a password.

[–] Godnroc@lemmy.world 13 points 3 days ago (1 children)

I did one of these phishing tests at a past job and the leadership wanted a list of who failed. I refused because it was just a drill, they knew they failed, and we had aggregated data to use for future analytics on training efficacy.

[–] Prove_your_argument@piefed.social 5 points 3 days ago

I love that all the reports and studies about this training are summed up as that it's completely worthless unless you've had zero experience with it before.

Relying on individuals to do the right thing has never been a good way of assuredly preventing anything.

[–] AntiBullyRanger@ani.social 4 points 3 days ago

They need scapegoats. They’ll blame anyone that’s not a C-suite.

[–] Saledovil@sh.itjust.works 2 points 2 days ago

This will result in phishing not being reported, which will exponentiate the damage.