Phishing Attacks and Scams

Questions and Answers

Match the following phishing attack types with their descriptions:

Spear phishing = Sending emails to many people at once Fishing = Sending emails disguised as from trusted contacts Whaling = Targeting high-profile individuals in an organization Scareware = Creating a sense of urgency to get a reaction

Match the following cybersecurity practices with their purposes:

Verify suspicious messages = Report phishing emails Stop, look, and think = Avoid clicking on infected attachments Contact the sender directly = Verify legitimacy of unexpected messages Follow organization's policies = Report phishing scams

Match the following phishing tactics with their goals:

Creating a sense of urgency = Getting sensitive information Using information found online = Creating a sense of familiarity Disguising emails as from trusted sources = Deceiving individuals into taking actions Using infected attachments = Installing malware on devices

Match the following cybersecurity best practices with their benefits:

Being suspicious of all emails = Avoiding malware installation Verifying sender's identity = Stopping phishing attacks Avoiding clicking on links = Preventing data breaches Reporting phishing emails = Protecting sensitive information

Match the following phishing characteristics with their descriptions:

Sense of familiarity = Using trusted sources to deceive Sense of urgency = Creating a false deadline Use of infected attachments = Installing malware on devices Use of legitimate sender addresses = Disguising phishing emails

Study Notes

Phishing Attacks

• Phishing is the most common attack in today's digital age, where cyber criminals send deceptive emails.
• The goal of phishing attacks is to deceive individuals into giving out sensitive information or taking dangerous actions.

Types of Phishing Attacks

• Spear phishing: a targeted attack on a particular person or organization, often using easily found online information.

Characteristics of Phishing Scams

• Create a sense of urgency or familiarity to prompt reaction without considering consequences.

Defense Against Phishing

• Be suspicious of all emails, especially unexpected messages with links or attachments.
• Stop, look, and think before taking any action.
• Verify suspicious messages by contacting the sender directly using a known phone number.
• If not legitimate, follow organization's policies and procedures for reporting it.

Types of Fishing Attacks

• Phishing: cyber criminals send emails disguised to look like they are coming from trusted contacts or organizations to deceive users into giving out sensitive information or taking dangerous actions.
• Spear phishing: a targeted attack on a particular person or organization using easily found online information, making it more convincing.

Characteristics of Phishing Scams

• Create a sense of urgency or familiarity to prompt the user into reacting without considering the consequences.
• Often contain links or attachments that can be infected.
• Use a false sense of trust by pretending to be from a trusted source.

Defense Against Phishing Attacks

• Be suspicious of all emails, especially unexpected messages containing links or attachments.
• Stop, look, and think before taking any action.
• Verify suspicious messages by contacting the sender directly using a known phone number.
• If the email is not legitimate, follow the organization's policies and procedures for reporting it.

Description

Learn about phishing attacks, including types such as spear phishing and characteristics of phishing scams, to protect yourself from cyber criminals.