Phishing Attacks

Presentation

•

Computers

•

9th - 12th Grade

•

Practice Problem

•

Easy

Maria Cruz Farooqi

Used 8+ times

FREE Resource

2 Slides • 13 Questions

Phishing Attacks

Learning Target: I can describe the risks to privacy from collecting and storing personal data on a computer system

Dropdown

The Internet is a network of computers filled with valuable data, so there are many security

in place to protect that data.

But there's a weakest link: the

. If the user freely gives away their personal data or access to their computer, it's much harder for security mechanisms to

their data and devices.

A phishing attack is an attempt to

a user into divulging their

information.

Dropdown

An example attack

A phishing attack typically

with an

that claims to be from a

website, like a banking website or online store:

Dropdown

The goal of the email is to obtain

from the user, so it either asks the recipient to

with personal

or it links to a

that looks remarkably like the original site:

Dropdown

If the user is convinced and

private details on the site, that

is now in the hands of the

If the user filled in login details, they can then use those credentials to log in to the

, or if the user provided credit card details, they can use the

to make purchases anywhere.

Dropdown

Signs of a phishing attack

Fortunately, there are some

signs of phishing

.

Suspicious email address

Phishing emails will often come from addresses at

that don't belong to the

.

Conversely, a legitimate email address is not a

that an email is 100% safe. Attackers might have figured out a way to spoof the legitimate email address or hacked their way into control over the actual email.

Dropdown

Suspicious URL

Phishing emails will often link to a website with a URL that looks

but is actually a website

by the

Dropdown

Attackers use a variety of strategies to make tempting URLs:

of the original URL or company name. For example, "goggle.com" instead of "google.com".

A spelling that uses similar looking characters from other alphabets. For example, "wikipediа.org" versus "wikipedia.org". The "e" and the "a" are actually different

in those two domains.

Subdomains that look like the domain name. For example, "paypal.accounts.com" instead of "accounts.paypal.com". PayPal owns the second domain, but they have no

over the first.

A different top level domain (TLD). For example, "paypal.io" versus "paypal.com". Popular companies try to buy their domain with the most common TLDs, such as ".net", ".com", and ".org", but there are

of TLDs out there.

Dropdown

Non-secured HTTP connections

Any

that is asking you for sensitive information should be using

the data sent over the Internet.Phishing websites don't always go through the extra effort to use HTTPS.

Dropdown

Requests for sensitive information

emails will often ask you to either reply with

information or fill out a form on a website. Most legitimate companies do not need you to

personal information after the original account creation.

Dropdown

Urgency and scare tactics

Phishing emails use

manipulation to lower our

and get us to respond quickly without

through the

Multiple Choice

Nisa receives this security alert about her Google account:

She suspects that it's a phishing email, so she decides not to click the buttons at the bottom.

Which aspect of the email is least indicative of a phishing attack?

The email includes a company logo.

The email recommends clicking buttons to take further action.

The sending email address is not from a google.com domain.

The subject line uses warning signs and an exclamation mark.

The email uses non-standard spacing and capitalization.

Multiple Choice

Evelyn receives an email that claims to be from the IRS, the United States Internal Revenue Service. The email states that their tax refund is ready and includes an attachment labeled "taxrefund.doc".

Evelyn is eager for their refund but worried the email is a phishing scam.

What is the safest next step?

Evelyn can download the attachment, send it through their antivirus software, and confirm that it has no malware inside it. Then they can safely open it.

Evelyn can open the attachment from their mobile phone instead of from their personal computer, since the mobile phone is more malware-proof.

Evelyn can find the official IRS website by searching the Web and contact IRS through a listed email address to inquire about the email.

Evelyn can search the Web to see if the ".doc" file type can ever contain malware. If it is always safe, then they can open it.

Multiple Select

Agatha received an email from her bank that asked for verification of her account details. She clicked the link in the email and entered her username and password into a form.

At that point, she realized the email was a phishing scam, and she had just revealed her password to the cyber criminals behind the scam.

What are the effects of revealing her bank account password to cyber criminals?

👁️Note that there are 2 answers to this question.

They can try the password on other websites where she has a login.

They can log into her computer and look at the files on her hard drive.

They can now more easily figure out other people's passwords for the banking site.

They can use the password to login to the real bank website.

They can use the password to access the entire database of the banking website.

Phishing Attacks

Learning Target: I can describe the risks to privacy from collecting and storing personal data on a computer system

Show answer

Auto Play

Slide 1 / 15

SLIDE

Similar Resources on Wayground

12 questions

Using Line of Best Fit to Make Predictions

Lesson

•

9th - 12th Grade

12 questions

In-text Citations

Lesson

•

9th - 12th Grade

10 questions

9/11

Lesson

•

9th - 12th Grade

11 questions

Must and Mustn't

Lesson

•

9th - 12th Grade

11 questions

Distance & Midpoint Formulas

Lesson

•

9th - 12th Grade

10 questions

Authentication and Control part 1

Lesson

•

9th - 12th Grade

12 questions

Alg. 1 10-5

Lesson

•

9th - 12th Grade

12 questions

Suffixes y and ly

Lesson

•

9th - 12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

10 questions

Probability Practice

Quiz

•

4th Grade

15 questions

Probability on Number LIne

Quiz

•

4th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

6 questions

Appropriate Chromebook Usage

Lesson

•

7th Grade

10 questions

Greek Bases tele and phon

Quiz

•

6th - 8th Grade

Discover more resources for Computers

10 questions

Exploring Digital Citizenship Essentials

Interactive video

•

6th - 10th Grade

14 questions

[AP CSP] JavaScript Programming Quiz

Quiz

•

9th - 12th Grade

10 questions

Understanding Computers and Computer Engineering

Interactive video

•

7th - 12th Grade

37 questions

Python - Tuples, Lists, and List Methods

Quiz

•

9th - 12th Grade

60 questions

MOS Word Home, Insert, Reference Ribbon Basics

Quiz

•

9th Grade

Phishing Attacks

​Phishing Attacks

​Phishing Attacks

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

Phishing Attacks

Phishing Attacks