How to catch a phish

How to catch a phish

A Quiz On Online Fraud Prevention

start

Question 1/7

What are the most common signs of a phishing scam?

Nice graphics and layout

Unknown sender, sense of urgency, unexpected attachment, or too good to be true

Contains personal information

Proper spelling and grammar

Correct!

Phishing emails often use a sense of urgency to make you click on a link or open an attachment without thinking. Often these emails come from someone you don't know and contain attachments or links that you don't recognize. Remember: If it's too good to be true, it probably is.

next

Question 2/10

How many phishing emails are sent each day worldwide?

100 Million

250 Million

1.5 Billion

3.4 Billion

Correct!

Phishing is an extremely lucrative criminal business and can be devastating to an individual or organization if successful.

next

Question 3/7

What is spear phishing?

A type of phishing that involves vacation offers

A type of phishing that promises a large reward

A type of phishing that targets specific groups of people in an organization

A type of phishing that lures the recipient in with a fun offer and then spreads a virus

Correct!

Spear phishing targets specific individuals or organizations in a business. The target could be system administrators, developers, executives, finance, HR or sales professionals, who handle sensitive data or access numerous systems. Spear phishing emails go after intellectual property and confidential information that could command high prices from interested buyers.

next

Question 4/7

What can happen if you click on a phishing email link or attachment?

The email sender could gain access to your computer or device

The email sender could steal your personal information

The email sender could distribute malware to your contacts

All of the above

correct!

If you click on a link in a phishing email or open an attachment, the email sender could gain access to your computer, steal your personal information, or distribute malware to your contacts. Don't give them this kind of power! Avoid clicking on links or opening attachments unless you know the sender and are sure the email is valid.

next

Question 5/7

How can a person executing a phishing attack steal someone's identity?

Pretend they're someone else when emailing phishing messages, so that's like stealing an identity

Ask for personal information on a webpage or popup from the email and use that information to make illegal purchases

They send a request for the recipient's driver's licence and credit cards.

They ask for money to purchase your ID on the black market.

Correct!

A person who sends phishing emails typically asks for personal or financial information on a webpage or pop-up window linked from the phishing email. He or she uses that information to purchase things online or gain unauthorized access to data. Phishers may use fake names, but they do not steal an identity to send the emails, nor do they request photos.

next

Question 6/7

Why would people who send phishing emails be excited about a natural disaster, health scare, or data breach?

They can exploit people's emotions and make them more likely to click on malicious links or attachments

They can create a sense of urgency, making people act impulsively without checking the legitimacy of the sender or message

They can take advantage of the increased demand for information or assistance and offer fake news or ask for donations

All of the above

Correct!

These events can create emotional reactions, information gaps, or trust issues among the recipients, which the attackers can exploit to persuade them to click on links or attachments that may contain malware, ransomware, or spyware.

next

Question 7/7

Unsure if an email is real or phishing? Which of the following should you do?

An unknown sender sounds vague or generic and threatening about one of your online accounts? Report it as phishing.

An alert comes from PayPal. Open a new browser window and login to see if anything is happening with your account.

An offer appears to be from Amazon but, looking closer, it's from Amzon.co. You should report and delete the email.

All of the above.

Correct!

• The email is vague and generic, and it's threatening something about one of your accounts.
• It talks about an urgent threat and sounds suspicious.
• The offer is too good to be true - don't click on the link.
• Never give out financial or personal information in response to an email that seems questionable.

next

You did it!

CONGRATS!

START OVER?

WRONGANSWER!

TRY AGAIN