Phishing attack on Augusta University Health leads to breach exposing info on 400K persons
https://www.scmagazine.com/phishing-attack-on-augusta-university-health-leads-to-breach-exposing-info-on-400k-persons/article/789497/
@patman this your hospital?
Yup. Some people just dont understand how it works and click every link they can from poorly worded emails...
Some IT/compliance heads rolled recently as a result
Yeah, security education and phishing exercises are part of my team's purview/responsibility. I'll never forget at a previous job, I had an older lady walk up to me and tell me she clicked on an email she thought was from her cousin Judy and after that her PC went haywire(and started propagating across the network). We had to clean that mess up. In talking with her she admitted she didn't have a cousin named Judy but couldn't remember if she did so she clicked it. Can't help stupid some times.
I can't tell you how many mandatory training exercises we've had or fake test emails get sent out to drive the point across. And some of these doctors STILL dont get it.
* we even have gigantic subject lines that warn when emails are created externally
Sent from my SM-G955U using Tapatalk