Clicked a link in an email from 'my bank' without thinking for 8 years
So last Tuesday I get an email saying my checking account was flagged for unusual activity. Looked perfect, same logo, same layout, even had my name on it. I clicked the link without a second thought, typed in my username and password, and only realized after I closed the browser that the domain was 'mybank-secure-login.xyz' or something wild. My stomach dropped. I work with my hands all day pressure washing driveways, I never thought I'd be the guy who falls for a phishing scam. Called the bank right away and luckily nothing happened since I caught it in 5 minutes, but has anyone else had that moment where you realize you've been doing something dangerous for years without knowing?