GitLab recently concluded a phishing campaign designed to target its remote employees.
The exercise sought to test the susceptibility of GitLab’s remote workforce, and 20% of employees fell for the attack by submitting their credentials to a fake login page.
While one in five is much better than average, it’s still more than GitLab would like to see. What was more alarming to GitLab was the number of employees who submitted the campaign to its security team.
https://www.itpro.co.uk/security/ph...s-its-remote-employees-and-1-in-5-fell-for-it
The exercise sought to test the susceptibility of GitLab’s remote workforce, and 20% of employees fell for the attack by submitting their credentials to a fake login page.
While one in five is much better than average, it’s still more than GitLab would like to see. What was more alarming to GitLab was the number of employees who submitted the campaign to its security team.
https://www.itpro.co.uk/security/ph...s-its-remote-employees-and-1-in-5-fell-for-it