daniela.juzl
Test por , creado hace más de 1 año

Test your phishing knowledge with a few examples!

23
0
0
Sin etiquetas
daniela.juzl
Creado por daniela.juzl hace alrededor de 10 años
Cerrar

Anti- Phishing Test

Pregunta 1 de 6

1

EXAMPLE 1:

From: Anna Sedgley <anna.sedgley@dowjones.com>
Date: Thu, March 28, 2016 at 10:41 AM
Subject: Hello Karyn
To: Karyn.Greco@dowjones.com

Hi Karyn,

Are you on desk at the moment? I need you to process a wire initiations for me today before the Cut-off hour . Advice

Thanks

Anna Sedgley

Chief Financial Officer

Which of the following indicate this might be a phishing attempt? (Select all that apply)

Selecciona una o más de las siguientes respuestas posibles:

  • Ambiguous/unexpected request to transfer funds

  • Misspelled email address

  • Poor grammar/spelling

  • Suspicious web link

Explicación

Pregunta 2 de 6

1

What should you do? (Select all that apply)

Selecciona una o más de las siguientes respuestas posibles:

  • Respond to the email and ask for more information.

  • Ignore the email as it seems suspicious.

  • Verify the validity of the email with the person (e.g., call, gchat, ask them in person) if you know the sender. Then notify the Cybersecurity Team at ssss-tech@dowjones.com if it is not a valid email.

  • Notify the Cybersecurity Team at ssss-tech@dowjones.com if you do not know the sender and the email appears suspicious.

Explicación

Pregunta 3 de 6

1

EXAMPLE 2:

From: Jane Doe <jane.doe@dowjonnes.com>
Date: Tue, Mar 10, 2015 at 10:41 AM
Subject: Migration Update
To: John.Smith@dowjones.com

John,

Over the past month, various employees have experienced availability issues with our external email infrastructure. In an effort to distribute increased load on our servers, we’ve created a secondary email server that employees can use when the primary email portal is unavailable. Please take a moment to verify that your username and password credentials work for the new email portal www.dowjonnesportal.com

We began the migration last week, but there are still issues with account activations, so please be patient. Please wait until March 23rd before submitting issues - we expect all accounts to be fully activated by this time.

Jane Doe
(M) 646-111-2222
jane.doe@dowjonnes.com

Dow Jones | Wall Street Journal

Which of the following indicate this might be a phishing attempt? (Select all that apply)

Selecciona una o más de las siguientes respuestas posibles:

  • Request for credentials

  • Misspelled email address

  • Poor grammar/spelling

  • Suspicious web link

Explicación

Pregunta 4 de 6

1

What should you do?

Selecciona una o más de las siguientes respuestas posibles:

  • Call/email the contact information listed to verify that it is a valid email

  • Send to ssss-tech@dowjones.com

  • Click the link and provide your credentials

  • Ask your colleague if they have received the same email to validate its authenticity

Explicación

Pregunta 5 de 6

1

EXAMPLE 3:

From: American Express <AmericanExpress@aexp.com>
Date: Tue, Mar 10, 2015 at 10:41 AM
Subject: Migration Update
To: John.Smith@dowjones.com

Dear John Smith,

Your corporate credit card will expire soon. To avoid any disruption in your service please update your credit card information on on file.

How to update your credit card information:

Log in to your Corporate American Express card using the link here.
Update your credit card information using the instructions provided.
Click ‘Save’.
Please do not reply to this email. The mailbox is not monitored and you will not receive a response.

Which of the following indicate this might be a phishing attempt? (Select all that apply)

Selecciona una o más de las siguientes respuestas posibles:

  • Impersonal email (not addressed to anyone specific)

  • Solicitation of personal or financial information

  • Urgent request

  • Suspicious “From” address

Explicación

Pregunta 6 de 6

1

EXAMPLE 5:

Dear Citibank.com Customer,

During our regular update and verification of the Internet Banking Accounts, we could not verify your current information. Either your information has been changed or incomplete, as a result your access to use our services has been limited. Please update your information.

To update your account information and start using our services please click on the link below:
https://web.da-us.citibank.com/cgi-bin/help-desk/verify.asp
AFTER SUBMITTING, PLEASE DO NOT ACCESS YOUR ONLINE BANKING ACCOUNT FOR THE NEXT 48 HOURS UNTIL THE VERIFICATION PROCESS ENDS.

Note: Requests for information will be initiated by Citibank Business Development; this process cannot be externally requested through Customer Support.

Sincerely,
Citibank.com
Security Department

Which of the following indicate this might be a phishing attempt? (Select all that apply)

Selecciona una o más de las siguientes respuestas posibles:

  • Vague, non-technical language (e.g., Internet Banking Accounts)

  • Impersonal email (not addressed to anyone specific)

  • A request for personal information from the Security Department

  • Comments advising against verifying legitimacy with Customer Support

Explicación