Need the opposite costume, the overly eager sys admin.
My fucking uni is trying to move to passwordless, but you will always need a password to log onto any lab device, and to the wifi, so why?
I mean you don't actually need a password for that when it's implemented the right way
Then they have you make it some 12 character length minimum string with mixed case and special characters and dictionary lookup so it isn't some common phrase but you're also logging in through a telnet instance onto a Unix system.
As someone in the InfoSec field, I also hate those people.
Sysadmin: “A clear indication of phishing email is the sense of urgency. We would never send out any email regarding urgent updates that needs immediate action.”
Also sysadmin: “URGENT!!! You must update your system now before Friday!!! Click link here for instructions! Otherwise you will be locked out!”
Spot on. We're changing XYZ policy and we need everyone to do this training within the week. Wait, why's no one opening my emails
Your corporate IT guy
Sigh. Their hearts are in the right places...
They usually don't have a choice. They know this stuff is bad, but they need it to demonstrate compliance with XYZ framework so they can fill out the marketing copy so sales can land a contract with some big customer that wants to know why $competitor has better security than you.
We might work at the same company lmao. My laptop is borderline unusable due to all the monitoring garbage despite having really fast hardware
“What do you mean this password is too short? I use it for everything!”
"how many times do i have to tell you that your name + your birthday date js not a good password!"
Needs a special character?
Password123!
Even worse is the CEO.
He needs access to everything and he's far too important to waste time with security.
This is the reason why those scams are so successful:
"Hi this is the CEO, wire $10000 to this account right now, we need it there yesterday. I don't have time to talk, just do it. Bye"
"My files are highly confidential"
password is suburb+suburbpostcode
I bet he also picks up USB sticks from the parking lot and plugs them into his work computer.
I used to have a lady I worked with who was like this. She had the common sense of a fucking carrot and was dumb as shit. What was weird is she was highly skilled in the one job she was hired for, the rest of the time she would click on everything and I would had to fix her computer multiple times a week. One time I tried to walk her thru something on the phone and I told her to click on an icon, her response was "Whats an icon?"
On the other side of things, don't you love systems that return "invalid password: password is not unique"?
The cybersecurity email tests I get at work are so transparent - Hi user, You have an unpaid invoice, please follow link to pay immediately.
I wish I could I could reply no I don't fuck off but I'd probably get in trouble lol
At my work the company wanted to show some gratitude and sent out email with free ice cream vouchers to everybody. Many suspected this was just another one of these cybersecurity email tests, so the company had to clarify it’s all real.
I think it’s hilarious the thought about hackers using ice cream as bait. Maybe that would work?
Evidently not at your company
Well, I guess it's good that people were being vigilant. But yes, I guess anything could work
I imagine it'd be satisfying to reply “fuck off”, but it'd let the attacker know it is a live address for a more targeted spear phfishing attack, so it is the right call not to respond imho.
Clicks on everything or is too scared to click on anything and never learns how to use the software
wait untill you hear "if i remember correctly my email password was {name} {surname} something @ gmail.com... what do you mean that's not it? why do i even need a password?"...
Fuck my email is (first name)(last initial)(birthday and month)@gmail.com
Searches for things online by typing it as a post on social media instead of using a search engine as in: "Google what is the weather like today near me?"
You must know my parents 😅
Hey. Password123 is progress, right?
They made me change it, so it's Password124 now.
... And then 2 months later, "why can't I log in"
Post funny things about programming here! (Or just rant about your favourite programming language.)
