Understanding Cyber Security Essentials

Phishing, identity theft, credit card fraud, online auction fraud, ransomware

Data encryption

Malware distribution

Social media marketing

Password security is only important for online banking.

Password security is important because it prevents unauthorized access to sensitive information.

Strong passwords are unnecessary for personal accounts.

Password security is irrelevant in social media.

JPEG, PNG, GIF

FTP, HTTP, SMTP

AES, RSA, DES, Blowfish, and ECC

SQL, NoSQL, XML

Use the same password for all accounts

Click on all links without checking

Be cautious with emails, verify sender identity, avoid suspicious links, use two-factor authentication, keep software updated, and educate about phishing.

Ignore all emails from unknown senders

Use the same password for all accounts

Ignore software updates

Disable firewalls and antivirus programs

Use strong passwords, update software regularly, employ firewalls and antivirus, conduct security audits, train employees, and back up data.

Data breaches negatively impact organizations by causing financial losses, reputational damage, and legal consequences.

Data breaches have no significant impact on financial performance.

Data breaches only affect customers, not the organization itself.

Data breaches enhance organizational reputation and trust.

Every month

Once a year

Every 3 to 6 months

Only when forgotten

Two-factor authentication adds an extra layer of security beyond just a password.

Two-factor authentication replaces the need for a password entirely.

Two-factor authentication is a method of creating longer passwords.

Two-factor authentication is only necessary for financial accounts.

Clear and professional language

Known sender addresses

Personalized greetings

Signs of a phishing email include generic greetings, urgent requests, misspellings, unfamiliar sender addresses, and suspicious links.

Limit access to cyber security information.

Encourage employees to ignore security protocols.

Implement regular training sessions and provide resources on cyber security.

Conduct annual assessments without training.