Cybersecurity threats and best practices

If you get an email that looks like it’s from someone you know, you can click on any links as long as you have a spam blocker and anti-virus protection.

You can trust an email really comes from a client if it uses the client’s logo and contains at least one fact about the client that you know to be true.

If you get a message from a colleague who needs your network password, you should never give it out unless the colleague says it’s an emergency.

If you get an email from Human Resources asking you to provide personal information right away, you should check it out first to make sure they are who they say are.

True

False

Reply to the text to confirm that you really need to renew your password.

Pick up the phone and call the vendor, using a phone number you know to be correct, to confirm that the request is real.

Click on the link. If it takes you to the vendor’s website, then you’ll know it’s not a scam.

True

False

Delete the phishing email.

Unplug the computer. This will get rid of any malware.

Change any compromised passwords.

Only paper files.

Only paper files and any computer on which you store electronic copies of those files.

Only paper files, flash drives, and point-of-sale devices.

All the above plus any other device with sensitive information on it.

True

False

True

False

It’s best to use multi-factor authentication to access areas of the business network with sensitive information.

You should use the same password for key business devices to guarantee that high-level employees can access them in an emergency.

The best way to protect business data is to make sure no one loses any device.

You shouldn’t limit login attempts on key business devices, because getting locked out for having too many incorrect attempts would leave you unable to access your accounts.

True

False