What is the most effective phishing scam you've seen via email and did you fall for it?
I have never fallen for a phishing scam because I know what to look for and I also check out the ad to see if it is in fact a scam or not.
I know of a publicly-traded company that lost $5 million in a phishing scam. Here is a summary of it.
In Medidata, a phishing email purportedly coming from Medidata’s president instructed a lower-level employee to wire roughly $4.7 million to a bank account as part of a secret corporate transaction. The email used a PHP script which made the address of the sender in the text of the email appear as if it had come from the company president’s company email, when in fact the real sender (and recipient of any replies) was a third-party fraudster. PHP scripts are a common tool used to spoof emails; the tool may be employed through third-party websites. The money was transferred pursuant to the fraudulent instructions and was withdrawn.
So the lesson here is to never wire money without actually talking to the person asking you to do it.