Our organization has annual training that shows how to identify possible issues and confirm valid sources. Users can report suspicious email and links. Before the virus, it was standard. Now reminders and hints go out often to ensure users are aware of the increased activity.
I can relate to dealing with this as well... it's a LOT of work. I'm a TA as well so that's more stuff to deal with and more tokens and PIN's and all that goes with it.
No kidding I can relate to that but we all have unclassified networks too... we have a report phishing button in outlook and also send users fake phishing emails to test and train them throughout the year.
Also paranoid and hopefully will soon be adding a layer at the SaaS level so we can benefit from a certain cloud provider's machine learning across their services.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 150,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.