• corvi
    link
    fedilink
    English
    arrow-up
    10
    ·
    7 months ago

    The problem is that type of phishing is pretty much unheard of these days. You’re so much more likely to run into a fake Microsoft SSO page. I see these every day at work, and if you’re not checking the URL, it’s often identical.

    So, the actual highest commandments are use MFA, read urls, and double check email senders.

    • Rob@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      7 months ago

      Use pass keys (where possible); that mitigates the issues you describe