Indiana University technology officials say more than 10 percent of employees flunked a test to see if they would fall for an email phishing scam.
More than 100 of 1,000 employees responded to an email last week asking them to change their passwords, The Herald-Times reported.
IU Chief Information Officer Brad Wheeler asked a company to create the email under his name but not his email address. A follow-up message was sent the next day from Wheeler's IU email address informing employees of the exercise.
IU Center for Applied Cybersecurity Research director Von Welch says the exercise was "kind of like doing a fire drill." He said the goal is to ensure the school is prepared. He said workers at other universities have fallen prey to similar phishing attacks.