I don’t mind this. I also don’t mind watching a movie in a non-English language so long as there are subtitles (Pan’s Labyrinth was awesome).

What I dislike are movies/series that decide to include a conversation in a different language without providing subtitles.

I hate this. Spending the next 5-10 minutes searching the internet to find a complete script of a show just so I have a complete understanding of what’s going on is annoying, not fun.

Well, this is going to bug me for the rest of my life.

Thanks.

This is ingeniously spiteful and I love it.

This is a good explanation. I can see how a multi-tiered approach like this makes sense, particularly for those most public-facing. Thanks.

That’s a good point; my company actually does implement something like this, though it invites intervention from the recipient for confirmation. I have previously received e-mail notifications stating that an e-mail has been ‘held’ as being suspicious and provided me an option to ‘release’ the e-mail (in these cases the e-mails were genuine and known in advance to me).

Of course, I have no simple way to determine if there is also an additional hard filter that blocks out obvious phishing with no notification to the end user.

Sure, a genuine phishing e-mail wouldn’t give a fuck. But fake phishing e-mails sent from an employer should give a fuck about retention and employee engagement. Drawing attention to how much you don’t care about your employees while exploiting their emotions isn’t all that conducive to maintaining a healthy workforce/morale.

There are ways to demonstrate the lengths bad actors are willing to go without being a douche.

As an example, find out something the employer actually will be doing (or already does) and pre-empt it with a related, but not identical, phishing test. After the test has elapsed, send a follow up explanatory e-mail, with genuine content e.g. “We won’t pay you $10,000,000 to have a baby, but did you know about our generous maternity leave package?”

The only phishing e-mails I receive are from my employer. As a matter of process I report these e-mails like a diligent lackey, then upon receiving an e-mail congratulating me on passing their test, I report that one too. I think the non-test phishing reports undergo manual review so I hope I’m wasting someone’s time somewhere in payback.

Still haven’t forgiven them for a tone-deaf ‘we care about you during COVID’ phishing e-mail they sent when everyone was genuinely struggling.