Cybersecurity Awareness Training: Email and Device Security

Questions and Answers

What is a common characteristic of a fake website used in phishing attacks?

Uses professional tone and is error-free

Impersonates an official authority or support team

Contains a URL that looks similar to the real site but is slightly altered (correct)

Contains a hyperlink that leads to a legitimate website

What is a recommended strategy for creating strong passwords?

Avoid using a password manager

Use easily discoverable information like birthdates or names

Use the same password for multiple accounts

Combine uppercase and lowercase letters, numbers, and special symbols (correct)

What does 2FA stand for in the context of password security?

Two-factor authorization

Two-factor authentication (correct)

Two-factor analysis

Two-factor access

What is the objective of social engineering in cybersecurity?

To gain unauthorized access to systems or sensitive information

How can employees verify the authenticity of emails received?

Check the full email address in the 'From' field

What should employees avoid using in their passwords?

Birthdates, names, or addresses

What does a reliable password manager help with?

Generating and securely storing complex passwords

What is an example of an urgent tactic used in social engineering?

Mentioning an urgent security issue requiring immediate action

What should employees do if they are unsure about a request related to their passwords?

Call the tech department for double check

What is the main focus of cybersafe awareness training?

Email security

What is a common characteristic of phishing emails?

They provide a link leading to a fake website designed to steal login credentials

What action is recommended when receiving a suspicious email attachment?

Double check with the sender by reaching out to them via phone

What is a common characteristic of a phishing email subject line?

Contains a sense of urgency to prompt immediate action

What is a common characteristic of a phishing email sender's domain?

Mimics a legitimate company's domain (e.g., yourbankk.com instead of yourbank.com)

What is the purpose of using generic greetings in phishing emails?

To appear more genuine and personalized

Phishing emails typically create a sense of urgency, request sensitive information, and provide a link leading to a fake website designed to steal login credentials or other personal data.

True

A reliable password manager helps prevent disruption and financial losses in cyber security.

False

Generic greetings, such as 'Dear Valued customer', are a common characteristic of phishing emails.

True

The sender's domain in a phishing email often mimics a legitimate company's domain to appear genuine.

True

Cybersafe awareness training focuses on preventing disruption and financial losses, building trust, and reputation management.

True

Phishing emails often contain hyperlinks that lead to legitimate websites.

False

Employees should validate the senders of suspicious emails by directly reaching out to them via phone calls or other means.

True

It is recommended to include easily discoverable information like birthdates or names in passwords for better memorization.

False

Using a reliable password manager is not advisable for generating secure passwords.

False

Social engineering in cybersecurity primarily exploits technical vulnerabilities rather than human psychology.

False