The job of a spam filter is to prevent spam or malicious emails from reaching your email inbox. Most spam filters rely on a mixture of artificial intelligence, heuristics and natural language processing to classify emails. However, this can only partially mitigate the risk of social engineering emails reaching their intended targets as there will always be emails that slip under the radar of even the most advanced filters. Moreover, even if a phishing email does get categorised as “spam”, it is still at risk of being opened. This happened in the infamous RSA attack of 2011 when an employee retrieved a phishing email in their spam folder and opened it, which resulted in a significant data breach.