A comedy of email errors

“I needed a password eight characters long so I picked Snow White and the Seven Dwarves.” 

This was the winning joke from comedian Nick Helm at 2011’s Edinburgh Fringe Festival and possibly the closest that cybersec has ever come to being funny in mainstream comedy. So with the largest arts festival closing its doors for another year, we started to question the whimsy of our industry given the serious nature of threats we’re defending against.

Well, it turns out that if you do want to exercise your sense of humor, phishing scams are probably the way to go… we’ve all guffawed when a particularly haphazardly-written email has found its way through to our inboxes, and comedians Joe Lycett and James Veitch have taken things to the next level by replying to these phishing emails, entertaining audiences with the hilarity that ensued. 

So given it’s early September, and the entire office is in a post-holiday coma, we thought we’d break the monotony of the perpetual cyber doom media cycle and distract you with a few of our favorite ludicrous scams and subsequent responses. Enjoy. Do send us any we’ve missed. But watch out for real scams. And stay safe online! 

The ‘stuck in space’ scam

The ‘I can put this assassination on hold’ scam

The ‘Mark Zuckerberg is a philanthropist’ scam

And what follows is another Zuckerberg scam this time on behalf of special agent Willy Nicolas, with a response from comedian, Joe Lycett:

https://joelycettcomedy.tumblr.com/post/118285164968/i-replied-to-a-facebook-scam-so-you-dont-have-to?is_related_post=1

The ‘I’m dying in hospital and want to send you my life savings’ scam (Courtesy of Joe Lycett)

https://www.youtube.com/watch?v=sxavC4kju7w

The ‘lucrative business deal’ scam (Courtesy of James Veitch)

https://www.youtube.com/watch?v=_QdPW8JrYzQ

We can all have a laugh about email scams but only if we’re confident that our email domains are fully secured. If you need help implementing DMARC, the only definitive way to protect your email domain, please get in touch with a member of the team!

PUBLISHED BY

Clare Holmes

3 Sep. 2019

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
Certificates

TLS certificates are changing: What you need to know

Red Sift

Executive summary: TLS certificates are about to get significantly shorter-lived. Starting 15 March 2026, newly issued public-trust certificates will max out at 200 days—and just three years later, that lifespan drops to 47 days. Backed by Google, Apple, and Mozilla, this shift aims to make the web safer through fresher data, faster failover, and…

Read more
DKIM

The hidden threat: How misconfigured DKIM enables replay attacks

Red Sift

Email authentication isn’t just an IT concern. It protects your brand and customers. A single misstep can let attackers spoof your domain, send phishing emails, and destroy customer trust. One of the most dangerous methods? The DKIM replay attack. In this post, we’ll break down how undersigned DKIM keys and related misconfigurations open your…

Read more
BIMI

Why DMARC and BIMI are a business priority

Jack Lilley

Email threats aren’t slowing down, and neither should your authentication strategy. In our recent joint webinar with Marigold, “From DMARC to BIMI: Navigating the New Email Authorization Landscape,” we broke down what today’s evolving standards mean for both security and marketing teams—and how to take action now with our free Red Sift Investigate tool.…

Read more
ASM

Zoom stops zooming: Why active monitoring is essential

Billy McDiarmid

​On April 16, 2025, Zoom experienced a significant global outage that disrupted video conferencing services and access to its website for thousands of users, as well as their corporate email for all their employees. It was quickly identified as a domain name registration status problem. Despite being a critical name for Zoom, somehow, the…

Read more