On 1 Aug 2017, at 23:33, David Harris <dhar...@drh.net> wrote: > The goal is to test the employees, not the spam filtering or anti-phishing > software.
If possible, make sure your normal support channels are briefed beforehand even if it’s just their management folks who can then cascade the event’s existence to their staff as it starts. We ran an externally-sourced phishing test some months ago. Within minutes of it starting, our Service Desk and Payroll teams were completely swamped with requests to check whether the emails were real, closely followed by masses of complaints. Graeme _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
