Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

KB4 Onboarding Terms > Phishing > Flashcards

Phishing Flashcards

1
Q

Phishing

A

The process of attempting to acquire sensitive information (such as usernames, passwords, or credit card details). It is a form of criminally fraudulent social engineering.

It’s done by masquerading as a trustworthy entity on bulk email, which tries to evade spam filters. Emails claiming to be from popular social websites, banks, auction sites, or IT administrators are commonly used to lure the unsuspecting public.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Spear phishing

A

A small, focused, targeted phishing attack on a specific person or organization, with the goal to penetrate their defenses.

The attack is done after research has been done on the target, and has a specific personalized component designed to make the target do something against their own interest.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Phishing attack surface

A

The quantity of email addresses exposed on the internet. The more email addresses exposed, the bigger the attack footprint is and the higher the risk for phishing attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Phish-prone percentage

A

A term coined by KnowBe4 that indicates the percentage of employees that are prone to click on phishing links.

The customer starts with a baseline percentage, which is the percentage of users who click on phishing links before being trained. Once trained, the test is done again 12 months later, to see the improvement.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Social engineering

A

The act of manipulating people into performing actions or divulging confidential information.

The term typically applies to trickery or deception for the purpose of information gathering, fraud, or computer system access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

CEO fraud

A

A spear phishing attack that targets high-risk users—people in Accounting, HR, or executive assistants—in which the hacker claims to be the CEO (or another executive) and urges an employee to do something that would not be authorized by the legitimate sender.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Vishing

A

Voice phishing

A phishing attack conducted by telephone. Vishing is the phone equivalent of a phishing attack.

There are two forms of this: human and automated.
Human example - A scam artist uses the anonymity of a phone call and pretends to be a representative of their target’s bank or credit card company, etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Smishing

A

Phishing conducted via Short Message Service (SMS), a telephone-based text messaging service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Email spoofing

A

Spoofing (tricking or deceiving) computer systems or other computer users. It involves sending messages from a bogus email address or faking the email address of another user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

KB4 Onboarding Terms (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions