Chicago media reporter Robert Feder shared an interesting story today. The Chicago Tribune recently sent a simulated phishing email to employees, to test them to see if they would "fall for" the phish and click on the links in the email message. This is somewhat standard in the corporate world and is used as a measure of whether or not an employee might need more email/internet security training. All good. Less good, though: using content that suggests that employees might be up for bonuses. "Coming at a time of pay cuts, furloughs and newsroom closings, Tribune staffers were incensed by the scam," says Robert. Oof. Good to hear that the company did apologize and admit the that the choice of language was a bit tone deaf. I hope others will learn from their mistake.