Phishing Flashcards

1
Q

Phishing

A

The process of attempting to obtain sensitive information such as usernames, passwords, and credit card details is done by pretending to be a trustworthy identity in bulk emails.
→ It is not the only method hackers use, but the main way.
→ All forms of phishing are a form of social engineering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Spear phishing

A

Small, focused, targeted phishing attack on a specific person or organisation. Goal: Penetrating defences.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Phishing attack surface

A

The number of emails exposed on the internet. More emails exposed = bigger attack footprint = higher risk of phishing attacks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Phish-prone percentage

A

A term made up by kb, this percentage indicates the percentage of employees who are prone to clicking on phishing links.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

CEO fraud

A

Spear phishing attack that attacks high-risk employees (HR, Accounting, Executive assistants). The hacker claims to be the CEO. Urges employees to do something that the real sender would not authorize.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Social engineering

A

The act of manipulating people into performing actions or revealing confident information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Smishing

A

Phishing via SMS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Email spoofing

A

Sending messages from a fake email address or pretending to be another user. People think it comes from a trusted source and are more likely to open it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly