Hacker Timesnew | past | comments | ask | show | jobs | submitlogin

Nope, seasoned pros I respect think trainig+$vendor is good enough. If it isn't, blame the user or the vendor!

There are shops where the goal is to have someone to blame when you get owned and there are rare shops where the goal is to do it right to catch/stop bad guys even if it means you get blamed (because management understand security is not absolute)



Well in the end we are all just human. We can't expect to blame things on each thing a human does to human.


I agree,but tell that to the people that fire employees for failing phishing tests


If they fire for one failed test, they need to understand that people learn from mistakes.

If they fire for repeated failed test, perhaps the person who is failing is not very well suited for a role where you have to resist phishing.


That's exactly how they think and it's b.s.! The whole point of this comment thread is that most people will fall for a phish if the phish is good enough.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: