I am wondering if our favorite former hacker would be interested in creating a phishing test that is capable of running in the reading pane in Outlook. When I try to get my users to turn off the reading pane (in my attempts to lock down every possible way in to our network), some of them resist. And many people scoff at the idea that this is even a potential danger. But I suspect that there are people out there working on crafting a delivery method that will get past all the current safeguards. If I could send out a phishing test from you guys that would prove that this is possible, I'd have better luck getting cooperation. My only other options are to give up and trust in hacker incompetence, or lock things down with GPOs.