"phishing attacks [..] tend to be very difficult for non-specialists to spot"
Yeah but, isn't Sopra Steria positioning itself as a specialist ?
That said, I can't really say I'm surprised. A few years ago I was in the position of receiving admin details for a contract that my company was taking over from them. The meeting was quite cordial, and the person in charge of handing over the details was quite agreeable, asking me for a USB key and writing an Excel file onto it.
When I got back to the office to analyze the file, what did I notice ? The Excel table was filtered. And what did I find when I removed the filter ? The entire database for all the clients with login, passwords, IP addresses and server names.
I'm sorry, but if you employ people with that level of understanding of Excel, how can you hope to have actual professionals taking care of business ?
Anon because obviously.