Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.social/users/rysiek/statuses/113290439549245280">Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Saturday, 12-Oct-2024 04:55:10 JST</a><a href="https://mstdn.social/@rysiek" title="rysiek@mstdn.social"><img src="https://gnusocial.jp/avatar/13472-48-20221025105231.webp" width="48" height="48" alt='Michał "rysiek" Woźniak · 🇺🇦' style="position: absolute; left: 0; top: 0;">Michał "rysiek" Woźniak · 🇺🇦</a><div><a href="https://cosocial.ca/@tim_lavoie/113290414198305305" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://cosocial.ca/@tim_lavoie">@tim_lavoie</a> 💯 </p><p>In $OLDJOB where I was responsible for people at actual risk, a person pinged me with "did you actually send that e-mail?"</p><p>It took *me* a couple of minutes to figure out it was a targeted attack. Coming from a very similar e-mail address to mine. Having *my actual e-mail signature*.</p><p>The attack got blown. Nobody got phished. Later I figured out the attack took 3 months of prep.</p><p>Asked the person how did they know.</p><p>"I didn't. It was a hunch. You told us to trust our hunches." 🎉</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3812614#notice-7458168">In conversation</a><time datetime="2024-10-12T04:55:10+09:00" title="Saturday, 12-Oct-2024 04:55:10 JST">about a month ago</time> <span>from <span><a href="https://gnusocial.jp/notice/7458168" rel="external" title="Sent from gnusocial.jp via ActivityPub">gnusocial.jp</a></span></span><a href="https://gnusocial.jp/notice/7458168">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Saturday, 12-Oct-2024 04:55:10 JSTMichał "rysiek" Woźniak · 🇺🇦
in reply to
- Tim Lavoie
@tim_lavoie 💯
In $OLDJOB where I was responsible for people at actual risk, a person pinged me with "did you actually send that e-mail?"
It took *me* a couple of minutes to figure out it was a targeted attack. Coming from a very similar e-mail address to mine. Having *my actual e-mail signature*.
The attack got blown. Nobody got phished. Later I figured out the attack took 3 months of prep.
Asked the person how did they know.
"I didn't. It was a hunch. You told us to trust our hunches." 🎉
In conversationabout a month ago from gnusocial.jppermalink

Public

Embed Notice

HTML Code

Corresponding Notice