Can You Avoid Phishing?

Approved & Edited by ProProfs Editorial Team
The editorial team at ProProfs Quizzes consists of a select group of subject experts, trivia writers, and quiz masters who have authored over 10,000 quizzes taken by more than 100 million users. This team includes our in-house seasoned quiz moderators and subject matter experts. Our editorial experts, spread across the world, are rigorously trained using our comprehensive guidelines to ensure that you receive the highest quality quizzes.
Learn about Our Editorial Process
| By Homulvas
H
Homulvas
Community Contributor
Quizzes Created: 1 | Total Attempts: 3,362
Questions: 11 | Attempts: 3,362

SettingsSettingsSettings
Can You Avoid Phishing? - Quiz

Phishing is a way of illegaly collecting user information. It uses different tricks to make the user believe that the links their are clicking on and the websites they're on are legitimate while the only thing they really do is to send collected data to the phishers. The techniques used by the phishers involve cloning legitimate websites or emails, masking URLs to resemble a legitimate domain or even use a legitimate domain in the URL but redirect the user to a fake website.
This quiz is designed to test the knowledge about phishing, how it works and how to avoid Read moreit.


Questions and Answers
  • 1. 

    Phishing is a way of attempting to acquire information. What information does it try to acquire?

    • A.

      Usernames and passwords

    • B.

      Credit card details

    • C.

      Social security numbers

    • D.

      Other personal details

    Correct Answer(s)
    A. Usernames and passwords
    B. Credit card details
    C. Social security numbers
    D. Other personal details
    Explanation
    While some phishers phish for specific information others might make use of any personal information.

    Rate this question:

  • 2. 

    Now who may be the targets of phishing attacks?

    • A.

      Corporations

    • B.

      Specific social circles

    • C.

      You

    • D.

      Everyone

    Correct Answer
    D. Everyone
    Explanation
    Spear phishing target specific groups of people but other phishers phish for information in the whole sea that is internet so everyone could be affected by it.

    Rate this question:

  • 3. 

    Lets check if you can spot a legitimate URL. Which of these links would lead to Google account settings?

    • A.

      Google.com.accounts.com

    • B.

      Accounts.google.com

    • C.

      Google.accounts.com

    • D.

      Accounts.com/google

    • E.

      Google-accounts.com

    Correct Answer
    B. Accounts.google.com
    Explanation
    Only one of the addresses is in the Google domain the other are subdirectories of accounts.com or a completely different website - google-accounts.com

    Rate this question:

  • 4. 

    Your browser tries to help you detect fraudulent websites.  Which indications in the browser indicate that the site is secure?

    • A.

      Https:// protocol in the adress bar

    • B.

      Padlock icon in the website itself

    • C.

      Padlock icon in the browser status bar

    • D.

      Link to a trusted Certificate Authority in the page

    • E.

      Trusted Certificate Authority indication in the browser

    Correct Answer(s)
    A. Https:// protocol in the adress bar
    C. Padlock icon in the browser status bar
    E. Trusted Certificate Authority indication in the browser
    Explanation
    https show that we have a secure SSL connection.
    Padlock icon in the browser usually means that we're securely connected and it additionally may mean the certificate supplier is trusted which is also a reliable source of legitimacy.
    However we shouldn't trust anything that is in the email itself since it can be easily forged.

    Rate this question:

  • 5. 

    Some people say you that they can tell which website is secure just by looking at it. Which visual clues in a website can be trusted to identify a real website?

    • A.

      Company logo

    • B.

      Seal of a Certificate Authority

    • C.

      Style of the email

    • D.

      None of them

    Correct Answer
    D. None of them
    Explanation
    It is impossible to tell if a website is legitimate just by look and feel, since more advanced phishing attacks use website clones that are identical to the originals. So the only way to check if it is legitimate is to look at the security indicators in the browser.

    Rate this question:

  • 6. 

    People have different techniques of telling that a website is real. What is the most important thing to pay attention to when trying to determine if a website could be trusted?

    • A.

      Look and feel of the website

    • B.

      Noticing security indicators in the browser

    • C.

      The domain in the address bar seems to be legitimate

    • D.

      It has some links to real websites

    Correct Answer
    B. Noticing security indicators in the browser
    Explanation
    Look and feel can be deceiving since it is possible to completely clone a legitimate website.
    People use tricks to make their URL's look as close to the real ones as possible such as changing between l (lowercase L) I (capital i) 1 (one) or adding part to the URL that will redirect the user to a phishing site.
    If a website has some links that lead to legitimate websites it doesn't mean that there isn't one link that will lead to a phishy place.
    Security indicators in the browser are there for a reason, they give information about SSL connection and the Certificate Authority. This information should be sufficient to find a legitimate website.

    Rate this question:

  • 7. 

    There are many techniques of masking fake URL's to look as legitimate as they can. Which of these links could be unsafe?

    • A.

      The domain part looks legitimate but the rest of it is some strange symbols and numbers.

    • B.

      An IP address is given instead of an URL

    • C.

      It has @ ([email protected]) symbol in the URL

    • D.

      There is a port switch (example.com:8034) at the end of the URL

    Correct Answer(s)
    A. The domain part looks legitimate but the rest of it is some strange symbols and numbers.
    B. An IP address is given instead of an URL
    C. It has @ ([email protected]) symbol in the URL
    D. There is a port switch (example.com:8034) at the end of the URL
    Explanation
    Phishers can use binary encoding to hide parts of the URL that they don't want for the user to see.
    Everything before @ symbol is omitted so only the part after it is important and this may be used to trick people.
    Some companies even have redirects to phishing websites on their servers(!) the only thing you need to do to access it is to change the port you are connecting through.
    IP addresses cannot be trusted unless you really know where that IP leads to.

    Rate this question:

  • 8. 

    You probably have used or at least seen Facebook. Is this the real Facebook?

    • A.

      Yes

    • B.

      No

    Correct Answer
    B. No
    Explanation
    The URL is not facebook.com. It doesn't use SSL connection. There is no padlock icon in the address bar. There is a yellow header in the website that doesn't exist on the real website.

    Rate this question:

  • 9. 

    Now you need to check your Gmail. Are you at the right place?

    • A.

      Yes

    • B.

      No

    Correct Answer
    A. Yes
    Explanation
    Website uses SSL connection. Padlock icon is present at the address bar. Link leads to the same domain.

    Rate this question:

  • 10. 

    You've got this email... Is it legitimate?

    • A.

      Yes

    • B.

      No

    Correct Answer
    A. Yes
    Explanation
    The sender is from the known senders list. The link leads to legitimate website. There is information about how to avoid phishing so the user could always contact PayPal and check if this email is legitimate.

    Rate this question:

  • 11. 

    And the last question... Another email from PayPal. Is it real?

    • A.

      Yes

    • B.

      No

    Correct Answer
    B. No
    Explanation
    The sender is clearly not from PayPal. The paypal part of the email is only a subdomain of fvdd.co.uk Such companies as PayPal never address their users as "User", they use real names. The link also leads to the same fake subdomain of fvdd.co.uk

    Rate this question:

Quiz Review Timeline +

Our quizzes are rigorously reviewed, monitored and continuously updated by our expert board to maintain accuracy, relevance, and timeliness.

  • Current Version
  • Apr 17, 2024
    Quiz Edited by
    ProProfs Editorial Team
  • Dec 06, 2011
    Quiz Created by
    Homulvas
Back to Top Back to top
Advertisement
×

Wait!
Here's an interesting quiz for you.

We have other quizzes matching your interest.