We’re a security company and seem to be a target. We get lots of those and almost constant attempts to scan our network.
A customer had several people get the cryptolocker virus. The initial infection was through email. It went to the compliance officer, who thought it was suspicious so she didnt open and called the risk manager, who agreed. So they called the head of IT who opened the dang email attachment.
Fortunately it didn’t get into their network shares.
Oops! /facepalm