Cybersecurity Awareness Training: Email and Device Security

Questions and Answers

What is a common characteristic of a fake website used in phishing attacks?

• Uses professional tone and is error-free
• Impersonates an official authority or support team
• Contains a URL that looks similar to the real site but is slightly altered (correct)
• Contains a hyperlink that leads to a legitimate website

What is a recommended strategy for creating strong passwords?

• Avoid using a password manager
• Use easily discoverable information like birthdates or names
• Use the same password for multiple accounts
• Combine uppercase and lowercase letters, numbers, and special symbols (correct)

What does 2FA stand for in the context of password security?

• Two-factor authorization
• Two-factor authentication (correct)
• Two-factor analysis
• Two-factor access

What is the objective of social engineering in cybersecurity?

To gain unauthorized access to systems or sensitive information (B)

How can employees verify the authenticity of emails received?

Check the full email address in the 'From' field (A)

What should employees avoid using in their passwords?

Birthdates, names, or addresses (D)

What does a reliable password manager help with?

Generating and securely storing complex passwords (D)

What is an example of an urgent tactic used in social engineering?

Mentioning an urgent security issue requiring immediate action (B)

What should employees do if they are unsure about a request related to their passwords?

Call the tech department for double check (C)

What is the main focus of cybersafe awareness training?

Email security (D)

What is a common characteristic of phishing emails?

They provide a link leading to a fake website designed to steal login credentials (B)

What action is recommended when receiving a suspicious email attachment?

Double check with the sender by reaching out to them via phone (C)

What is a common characteristic of a phishing email subject line?

Contains a sense of urgency to prompt immediate action (D)

What is a common characteristic of a phishing email sender's domain?

Mimics a legitimate company's domain (e.g., yourbankk.com instead of yourbank.com) (B)

What is the purpose of using generic greetings in phishing emails?

To appear more genuine and personalized (C)

Phishing emails typically create a sense of urgency, request sensitive information, and provide a link leading to a fake website designed to steal login credentials or other personal data.

True (A)

A reliable password manager helps prevent disruption and financial losses in cyber security.

False (B)

Generic greetings, such as 'Dear Valued customer', are a common characteristic of phishing emails.

True (A)

The sender's domain in a phishing email often mimics a legitimate company's domain to appear genuine.

True (A)

Cybersafe awareness training focuses on preventing disruption and financial losses, building trust, and reputation management.

True (A)

Phishing emails often contain hyperlinks that lead to legitimate websites.

False (B)

Employees should validate the senders of suspicious emails by directly reaching out to them via phone calls or other means.

True (A)

It is recommended to include easily discoverable information like birthdates or names in passwords for better memorization.

False (B)

Using a reliable password manager is not advisable for generating secure passwords.

False (B)

Social engineering in cybersecurity primarily exploits technical vulnerabilities rather than human psychology.

False (B)

Flashcards are hidden until you start studying