Which of the following is a key way to defend against phishing attacks?

Enabling two-factor authentication.

Re-using the same password across multiple websites.

Immediately clicking on all links in emails to verify them.

Replying to suspicious emails to ask for more information.

A type of cyberattack where an attacker gains access to a business email account to conduct fraudulent activities is called:

Business Email Compromise (BEC)

You receive an email from your bank with the subject line "URGENT: Account Suspension Notice." The email states that there has been suspicious activity on your account and you must click a link immediately to verify your identity, or your account will be locked. What social engineering principles are being used, and what should you do?

The email uses urgency and fear to trick you into clicking a malicious link. You should not click the link and instead contact your bank directly through official channels.

The email is a routine notification and you should click the link to resolve the issue quickly.

The email is likely a technical error and you should ignore it completely without informing anyone.

The email is a legitimate security alert and you should reply with your personal information to verify your identity.

While browsing a popular news website, a pop-up appears and a file automatically downloads without you clicking anything. Your computer's performance suddenly slows down. What type of attack has likely occurred, and what should you do to defend against this in the future?

A drive-by download attack has likely occurred. To defend against this, keep your software updated, use antivirus protection, and avoid clicking on suspicious pop-ups.

A phishing attack has likely occurred. To defend against this, never open email attachments from unknown senders.

A brute force attack has likely occurred. To defend against this, use strong passwords and change them regularly.

A denial-of-service attack has likely occurred. To defend against this, avoid visiting popular websites.

Social Engineering Unit Review

Authored by Rob Breshears

Computers

10th Grade

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

22 questions

Show all answers

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Which of the following is a cybercrime tactic used to deceive individuals into providing sensitive information like usernames and passwords?

Typosquatting

Phishing

Watering Hole Attack

Clickjacking

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

A social engineering principle where the attacker pretends to be a person of importance, like a police officer, is known as:

Scarcity

Urgency

Authority

Trust

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Exploiting a user's misspelling of a website, such as typing "facbook.com" instead of "facebook.com," is an example of what?

Whaling

Vishing

Smishing

Typosquatting

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

What type of phishing attack is directed at a high-profile target, such as a CEO?

Spear phishing

Whaling

Spam

Clone phishing

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Which of the following involves an attacker stealing the cookie used to authenticate a user on a website?

Session Hijacking

Credential Harvesting

Clickjacking

Business Email Compromise

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Intentionally spreading false information with the purpose of causing harm or confusion is known as:

Misinformation

A hoax

Disinformation

Impersonation

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

A "watering hole" attack is a metaphor for what?

Flooding a user's inbox with spam emails.

A place online that users frequently visit for information or resources.

A physical location where hackers gather.

An attack that uses a sense of urgency to trick victims.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Layer OSI X TJK 1

Quiz

•

10th Grade

17 questions

Kiến thức về trang tính

Quiz

•

7th Grade - University

20 questions

Advantages and Disadvantages of Collecting Data

Quiz

•

10th Grade

20 questions

PowerPoint

Quiz

•

10th Grade

19 questions

¿Qué es un sistema operativo?

Quiz

•

10th Grade

20 questions

ETS - Simulasi Komunikasi Digital

Quiz

•

10th Grade

20 questions

History of Package Design

Quiz

•

9th - 12th Grade

20 questions

Name The Disney Animation Films

Quiz

•

KG - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

29 questions

Alg. 1 Section 5.1 Coordinate Plane

Quiz

•

9th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

11 questions

FOREST Effective communication

Lesson

•

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Computers

15 questions

Digital Safety Scenarios

Quiz

•

10th Grade

10 questions

Exploring Cybersecurity Techniques and Threats

Interactive video

•

6th - 10th Grade

Social Engineering Unit Review

Which of the following is a cybercrime tactic used to deceive individuals into providing sensitive information like usernames and passwords?

A social engineering principle where the attacker pretends to be a person of importance, like a police officer, is known as:

Exploiting a user's misspelling of a website, such as typing "facbook.com" instead of "facebook.com," is an example of what?

What type of phishing attack is directed at a high-profile target, such as a CEO?

Which of the following involves an attacker stealing the cookie used to authenticate a user on a website?

Intentionally spreading false information with the purpose of causing harm or confusion is known as:

A "watering hole" attack is a metaphor for what?

Which principle of social engineering creates a sense that you must act now with no time to think about the outcome?

Which of the following is a key way to defend against phishing attacks?

A type of cyberattack where an attacker gains access to a business email account to conduct fraudulent activities is called:

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers