The right person in the wrong state of mind would click on it.
Among other things, I run the company IT. I've lost count of the amount of times I've had a paniced phone call about a "notification from the server" saying they were going to lose access to their e-mail and "is it legit?".
All it takes is that one uncertain person to click through and they've won.
You and I know what to look for, but honestly anything "computer related" is black magic to *most* people, so to the perpetrators it's like shooting fish in a barrel.
We've had a massive spike in phishing e-mails in the last 3 days, so someone new has obviously obtained a list and off they go.
They only need one "winner" to make it worthwhile, and I guarantee they get more than one.
Bookmarks