Things I'm mad about today

[superdave1984]

There is no end to stupid people in this world. We had a few, maybe 3, users get their accounts compromised last week. The scammers used the accounts to mass email everyone in the global address book using a couple of different phishing templates. The number of people who fell for it is astonishing. So naturally the scammers pivoted to some of those accounts to continue their scheme. Automation stopped most of it, but dumb people are just dumb. These folks gave up their passpord and their 2fa code to the scammers. So these scam emails went out to everyone more than twice and morons still fell for it. Had the scammers not tried to send 2000+ emails at a time, automation would not have caught it. Security policy revisions are being reviewed.

 

[508mikey]

There is no end to stupid people in this world. We had a few, maybe 3, users get their accounts compromised last week. The scammers used the accounts to mass email everyone in the global address book using a couple of different phishing templates. The number of people who fell for it is astonishing. So naturally the scammers pivoted to some of those accounts to continue their scheme. Automation stopped most of it, but dumb people are just dumb. These folks gave up their passpord and their 2fa code to the scammers. So these scam emails went out to everyone more than twice and morons still fell for it. Had the scammers not tried to send 2000+ emails at a time, automation would not have caught it. Security policy revisions are being reviewed.

What did the scammers profit out of this ?

 

[superdave1984]

What did the scammers profit out of this ?

We really don't know yet. There's a bunch of stuff they could have accessed but we don't know yet if they did. Possibly PII, financial, etc. I am not on the cyber team so I don't know much of the details. Scam emails are so common that everyone falls seemingly into two groups. Those that don't trust anything and those who trust everything.