Section 6: Social Engineering and Ransomware Overview

Questions and Answers

What primary tactic do social engineering attacks exploit?

Malware embedded in software

Human psychological manipulation (correct)

Advanced technological vulnerabilities

Weaknesses in network infrastructure

Which of the following is NOT a method of social engineering?

Phishing

Wifihacking (correct)

Vishing

Pretexting

What psychological concept underpins social engineering techniques?

Decision fatigue

Reinforcement theory

Social norms

Cognitive biases (correct)

What type of social engineering involves deception through phone calls?

Vishing

Why might individuals fall victim to social engineering attacks?

Lack of cybersecurity training

In social engineering, what type of communication is usually employed to create urgency?

Urgent or threatening language

What do attackers aim to achieve through pretexting?

Gathering personal information through impersonation

What is the most effective immediate action to take if a ransomware attack is suspected?

Remove the malware and disconnect the workstation.

Which of the following statements about paying a ransom is accurate?

Paying the ransom may encourage further attacks by hackers.

What is considered the best defense against ransomware?

Using an antivirus and maintaining offline backups.

Which of the following statements is NOT a valid consideration regarding ransom payments?

There are no ethical concerns related to paying ransoms.

What precaution should you take when receiving a suspicious email about a password change?

Contact the IT department to verify the message.

What technology has evolved into a common source for scams?

Caller ID

Which scenario exemplifies Caller ID spoofing?

A call displays the IRS number while the caller is a scammer

What common action do scammers often request in the context of the Internal Revenue Service scam?

Providing credit card details immediately

What makes email sender spoofing particularly easy?

Availability of specific tools for spoofing

How does basic Caller ID spoofing operate?

It alters the number when reaching the receiver's provider

Which of the following is NOT a form of spoofing discussed?

Website spoofing

What could happen if a receiver tries to call back a spoofed Caller ID number?

They will likely reach the actual owner of that number

What is a common method by which email spoofing can occur?

Modifying the 'From' address in an email

What psychological strategy do scammers often leverage through Caller ID spoofing?

Impersonating known institutions to gain trust

What should you do first if you receive a suspicious notification or email?

Stop and examine the content before taking action.

What is a common indicator of a fake email sender?

A warning notification from your email service.

What is the purpose of checking the email's 'Show Original' feature?

To obtain the actual details of the sender.

If an email claims to be from UOB but the sender's IP address is traced to the Czech Republic, what does this suggest?

The email is likely a scam attempting to impersonate UOB.

Why is it advisable to write a web link manually instead of clicking on it?

To avoid potential redirection to a fake website.

Which of the following is NOT mentioned as a warning sign of a scam?

Receiving unsolicited calls from unfamiliar numbers.

What aspect of human behavior does social engineering primarily exploit?

Psychological impulses and reactions.

What should you do if a website claims you are its exact 1,000,000th visitor?

Ignore it as it is likely a scam.

What technique is suggested for verifying an IP address found in an email?

Searching the IP address on tracking websites.

Which indicator is NOT typically associated with identifying a phishing email?

Request for both online ID and password

What is a primary function of ransomware in cybersecurity threats?

To encrypt files and demand payment for decryption

Which of the following methods is NOT a way that ransomware can be delivered to a user's system?

Direct downloads from official sites

What should a user do to protect themselves from social engineering scams?

Stay calm and avoid panicking

What characteristic would signal that a website may be involved in a phishing attempt?

The site only requests the online ID and not the password

Which of the following describes crypto-ransomware specifically?

It encrypts certain file types and demands ransom for decryption

What might indicate that you are in a 'secure area' on a suspicious website?

You see an unclear sign-in prompt

Which action is least likely to lead to ransomware infection?

Downloading an email attachment from a trusted source

What is a common misconception about ransomware?

It demands payment through cryptocurrencies only

Identifying which feature is critical for avoiding falling victim to malicious websites?

Recognizing unusual URL structures

What immediate action should be taken upon receiving a suspicious notification or email?

Stop and carefully assess the content before proceeding.

What method can help determine the legitimacy of a sender in an email?

Checking the email details by using 'Show Original.'

Why is it recommended to write the web link manually instead of clicking on it?

To guarantee the link will not lead to a scam.

If an email appears to be from a reputable organization but the sender's IP address is traced to an unexpected location, what is the likely conclusion?

The email may be spoofed or fraudulent.

When evaluating a suspicious Facebook page, which of the following could indicate it is fake?

An unusual number of likes.

What is a common strategy used by scammers to create urgency in their communication?

Claim that action is required to secure a limited-time offer.

Which of the following is NOT a suggested action for avoiding social engineering scams?

Trusting unsolicited messages from unknown sources.

What does receiving a notification that you are the 'exact 1,000,000th visitor' typically suggest?

A probable scam attempt.

What is a crucial consideration when analyzing the links provided in suspicious emails?

Fake websites may mimic legitimate ones, so caution is needed.

What psychological aspect do social engineering attacks primarily exploit?

Trust and the tendency to help others.

Study Notes

Social Engineering and Ransomware

• Many cyber security breaches are caused by human behavior, not technical vulnerabilities.
• This presentation covers how hackers exploit human weaknesses.
• Safe WiFi network use is critical to avoid attacks.
• Vishing, clickjacking, spoofing, and phishing are social engineering techniques.
• Ransomware is a type of malware that prevents or limits access to systems, often by encrypting files.

Social Engineering

• Social engineering manipulates people into performing actions or divulging confidential information.
• It's based on cognitive biases (human decision-making errors).
• Techniques include phishing, vishing, pretexting, and clickjacking.
• Phishing involves sending deceptive emails to gain sensitive information.
• Vishing uses phone calls to impersonate legitimate entities.
• Pretexting involves impersonating another person to gain information.
• Clickjacking tricks users into clicking on something different from what they intend.

Ransomware

• Ransomware prevents access to systems, often by encrypting files.
• Most ransomware is crypto-ransomware.
• Users are forced to pay a ransom for the decryption key.
• Ransomware can be downloaded from malicious websites and emails with attachments.
• Ransomware can spread through malvertisements (malicious advertisements).

Avoiding Social Engineering Scams

• Don't panic when receiving notifications, emails, warnings, or calls.
• Examine the website links provided in emails to ensure authenticity.
• Check details like sender's email address and domains.
• Check for fake websites and logos.

Spoofing

• Caller ID and email spoofing deceive users into providing credentials.
• Phone numbers can be spoofed to make calls appear to come from a different source.
• This can be used in scams requesting payment.

Email Spoofing

• Spoofing is as easy as faking physical mail.
• The "From" address in an email can be easily altered to make the email look legitimate.

Ransomware Defense

• Immediately remove malware if suspected.
• Disconnect and shut down systems to prevent spread.
• Use antivirus and maintain offline backups to avoid data loss.
• Do not pay the ransom. There is no guarantee the data will be recovered, and it might encourage more attacks.

Social Engineering and Ransomware Quiz Questions/Answers

• Question 1: What step in verifying an email from the IT department isn't advised?

  • Answer: Don't click on the link, instead call the IT department.

• Question 2: How to verify a bank email asking for identification?

  • Answer: Verify the domain, check for the bank logo, and manually access the online banking account.

• Question 3: Description of a phishing scam?

  • Answer: A phishing scam involves a request for personal information, initiated by an outside entity, and not an existing customer relationship.

• Question 4: Which characterizes a phishing scam?

  • Answer: Personal information request, initiated by an outside entity, and not an existing customer relationship

• Question 5: What communication entities can be spoofed?

  • Answer: Any communication entity: phone numbers, voices, email addresses.

• Question 6: When a bank email with a link is received?

  • Answer: Do not enter the link, and instead access their real official website to verify the request

• Question 7: True statement about ransomware?

  • Answer: Paying the ransom is not a reliable option for data recovery.

Description

This quiz delves into the critical aspects of social engineering and ransomware in cybersecurity. It explains how hackers exploit human psychology to commit fraud and the importance of safe internet practices. Learn about various techniques such as phishing, vishing, and the impact of ransomware on system access.