**SwiftOnSecurity** @SwiftOnSecurity@infosec.exchange · Nov 06, 2024, 01:36

**SwiftOnSecurity** @SwiftOnSecurity@infosec.exchange · Nov 06, 2024, 01:36

SwiftOnSecurity @SwiftOnSecurity@infosec.exchange

Nov 06, 2024, 01:36

SwiftOnSecurity @SwiftOnSecurity@infosec.exchange

1fb3c29a8c263bb3.jpeg

**marimo** @a@asentientbot.ca · 2024-11-06T02:46:32Z

marimo @a@asentientbot.ca

@SwiftOnSecurity why do employees fail phishing tests if they just click a link, anyways? shouldn't it be a pass if you realize it's fake and back out without entering any info? unless they are really simulating browser exploits rather than phishing..?

Nov 06, 2024, 02:46 · · Web · · ·

**Ian Hill** @IanHill@infosec.exchange · Nov 06, 2024, 02:59

**Ian Hill** @IanHill@infosec.exchange · Nov 06, 2024, 02:59

Nov 06, 2024, 02:59

Ian Hill @IanHill@infosec.exchange

@a @SwiftOnSecurity I agree with this point - its a fail if the user actually enters credentials and only then should they redo the training. Just clicking a link isn’t great but not enough to be a fail

Resources

Developers

What is Mastodon?

asentientbot.ca

More…