Our director of marketing caught the first one. “Hey, check this out,” he wrote at the top of the forwarded email. Beneath was a quick message letting him know that one of his contacts had shared a Google doc with him. The email looked squirrelly, not least due to a recipient email that was nothing but a string of h’s.
It’s always great when someone in the company forwards a suspicious email to me, especially since that’s what I’ve asked everyone to do over a year-long course of phishing awareness training. But the director of marketing is very tech savvy and has a security background of his own, so I would have expected nothing less.
