WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2026 Poal.co

966

(post is archived)

[–] 5 pts

This isn't evil. They know who the idiots are and what steps they need to take to protect the company's data now. Larger companies do this often.

[–] 0 pt

Yeah, how the fuck could someone trying to fix the leaks in the companies security be considered evil?

[–] 0 pt

It would be evil if they used those lists to lay people off, but that isn't what they did. Those lists are the idiots that need more training. I was apart of a test like this. 4000 or so mailboxes and 25%, I think, clicked on the link.

[–] 0 pt

It would not be evil even if they fired them upon clicking. Security is a serious business and all of those people who clicked I am sure have been through the training already. If it were my company and I had sensitive data to protect they would have received a termination notice upon clicking the link and it would not be evil, it would be security

[–] 3 pts

Almost every descent size company sends out phishing test emails. This is normal. The idiots who responded to what they thought was a corporate email asking for their personal information (why would they need that? they already have it.) should be fired... and knee-capped.

[–] [deleted] 1 pt

What, the Jelly of the Month Club isn't a gift that keeps on giving, year round?

[–] [deleted] 0 pt

My job has done this. My email policy is I ain't clicking that shit until it has been sent to me by two different people.

[–] 0 pt

How could you not know that an email is legit and coming from your own company?

What details are we not getting here?

[–] [deleted] 1 pt

They sent an email to employees from their own mail server. They literally tricked their people by appearing to require a response. That's some bullshit. Fuck GoDaddy.

[–] 2 pts

if it comes from their actual company email, its not a phishing scam. its just a lie lol

[–] 0 pt

Or maybe don't be a nigger and click on suspicious links.

[–] 0 pt

im not sure I understand the point of this.

[–] 0 pt

GoDaddy sent out emails to their employees to test their internal technology security. The emails were not from an official or internal GoDaddy email address/domain, i.e. it was outside email designed to look like it was official company email. The email message promised employee bonuses but required employees to give out personally identifying information (stuff that should be secure) in order to get the bonus. Some employees happily surrendered the information to get money without verifying that the email was actually from GoDaddy thereby failing the security test that would ensure employees don't give out sensitive data to outside individuals. The employees that failed the test were then forced to attend mandatory technology security training to teach them not to do this again.

The problem here is that GoDaddy made poor choices in their selection of the content of the email. The email was designed to look enticing to employees by saying they would get bonuses. While this is exactly the sort of thing a malicious outsider seeking sensitive information would do, GoDaddy chose poorly to use bonuses as bait during a tough economic time when people could really use the money. GoDaddy wasn't in the wrong necessarily, but they certainly didn't do anything positive for the morale of their employees by baiting with bonuses they will never see. It was a good technical test, but it was also a failure on employee trust and company morale. They left a bad taste in the mouths of their employees and I'm sure they will be mocked internally for years to come. No one will believe in bonuses being offered in the future due to this debacle. Sad.

[–] 0 pt

GoDaddy should give bonuses to the employees who smelled a rat. They're spending money (for training) on the employees who didn't.

[–] 0 pt

It's a jew company. They won't give any shekels to the goyim employees. They only share with the tribe.