BLOOMINGTON, Ind. — Indiana University technology officials say more than 10 percent of employees flunked a test to see if they would fall for an email phishing scam.
The Herald-Times reports more than 100 of 1,000 employees responded to an email last week asking them to change their passwords.
IU Chief Information Officer Brad Wheeler asked a company to create the email under his name but not his email address. A follow-up message was sent the next day from Wheeler's IU email address informing employees of the exercise.
IU Center for Applied Cybersecurity Research director Von Welch says the exercise was "kind of like doing a fire drill." He says the goal is to ensure the school is prepared. He says workers at other universities have fallen prey to similar phishing attacks.
