• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

Kolledge Stoodints R Stoopid

FrgMstr

FrgMstr

Just Plain Mean
Staff member
2FA
Joined
May 18, 1997
Messages
58,019
Did you ever wonder who those folks were that click on phishing emails? Well now we know. OSU UoA did a faux phishing mail campaigns on their own students in the name are getting more smarter and found out that about 20% of the students probably should not be allowed to own an iPhone. Don't feel left out however, Youtube will have you up and phishing campaign in one minute.

Check out the video.

When Ohio State University did its first student-focused phishing in January — a strategy also used in the corporate world — over 18 percent of the recipients clicked through. The University of Alabama at Birmingham’s employee-focused phishing awareness campaign snagged over 7,000 people in March, or about a quarter of the recipients.

Ohio State has used phishing simulations for employees since 2016. Officials won’t disclose exact results for security reasons but say responses have improved since the early rounds when, for example, a message about a second-floor printer was clicked by people in facilities that didn’t even have a second floor.
 
This may be true, but they are "woke".

(Friggin' idiots.)
 
When some of the top colleges picked only the top students and then put them in a situation where they were graded on curve, it meant that some of them, who were very good in high school, were suddenly getting D's and F's. This meant a high suicide rate. Finally they got smart and started admitting students who were used to getting those low grades. Lo and behold, the suicide rate dropped. So just because someone is in college, doesn't meant they are smart, even very academically rigorous colleges need "dumb" students. You also have the students admitted because daddy went there and donates lots of $$$ and are admitted no matter what their qualifications (and miraculously get a degree).
 
to be fair as a "n00b" that clicked an intercompany test link, one of my biggest concerns for these tests is "Are you doing a REALISTIC test?"

For example, is your phishing url something that looks odd or unfamiliar/unofficial?
is the email address you're sending it from odd or unfamiliar?

What I'm trying to say here is if you're trying to act like you're not from the company, you can't have an intercompany URL with a message that sounds very familiar.
 
Sounds like an opportunity to make a quick bux! You know, taking poor college kid's monies to buy over inflated GPU prices!
 
Really hate phones and programs/apps that dont allow you to check the link before having to click it.

Security 101...
 
Cyraxx said:
to be fair as a "n00b" that clicked an intercompany test link, one of my biggest concerns for these tests is "Are you doing a REALISTIC test?"

For example, is your phishing url something that looks odd or unfamiliar/unofficial?
is the email address you're sending it from odd or unfamiliar?

What I'm trying to say here is if you're trying to act like you're not from the company, you can't have an intercompany URL with a message that sounds very familiar.
Click to expand...

Why can't you have a message that sounds familiar? Phishing is all about familiarity, phishers look for all sorts of ways and info to make things look legit and they can perfectly replicate lots of things. The only thing they can't replicate is the domain they don't have. So that is really the only test. What I don't understand is why companies have not come to the point where they stop sending links in emails. Just as surely as you should never ever give your password to anyone you should never ever click any link in any email for any reason unless you solicited that link specifically and there is very little chance it could have randomly come to you. For instance, a password reset link is fine, because you should know if you just solicited some web site to send you a password reset link. But a general company email should not contain links unless it's a specific conversation.

What this study really shows is that companies and people in general need to accept that they need to completely rethink email. its too easy to phish and exploit. I always tell people especially my parents that you never click on any link in an email you just go directly to that website and do what you need to do manually. If the bank sends you an email telling you you need to do X or Y, you go log in to the banks website. Because its just too hard to explain to most people how URLs are structured and hope they dont miss anything when trying to figure it out. And the worst part is now days phone scams are just as bad so you have to tell them to treat the phone like email. Never give any personal info to anyone who calls you for any reason. Always call them by going to their official website and getting their phone number. Once again only exception is when you have initiated some sort of dialog. IE you ask for support on amazon, then you get a call from an amazon rep.
 
WhoMe said:
When some of the top colleges picked only the top students and then put them in a situation where they were graded on curve, it meant that some of them, who were very good in high school, were suddenly getting D's and F's. This meant a high suicide rate. Finally they got smart and started admitting students who were used to getting those low grades. Lo and behold, the suicide rate dropped. So just because someone is in college, doesn't meant they are smart, even very academically rigorous colleges need "dumb" students. You also have the students admitted because daddy went there and donates lots of $$$ and are admitted no matter what their qualifications (and miraculously get a degree).
Click to expand...

Curve rating is pretty not smart on its own. How am I to compare a B in one class being better than a guy having A in another class just because his peers are better/worse.
It sound stupid to begin with, but maybe I am missing something?
 
Last edited:
SvenBent said:
Curve rating is pretty not smart on its own. How am I to compare a B in one class being better than a guy having A in another class just because his peers are better/worse.
It sound stupid to begin with, but maybe I am missing something?
Click to expand...
No, you're not. It is dumb. Much better is a fixed system, where anyone can earn an A if they apply themselves, if the whole class does so be it (and the whole class could flunk out too...which is an advantage of curve grading since the whole class can't flunk).
 
You must log in or register to reply here.
Back
Top