5 Phishing Quizzes to Practice at Spotting a Scam

phishing quiz practice to train staff @ruralict.com
Phishing quiz practice trains user to separate fake versus legitimate messages

Many ransomware attacks start with an email with a malicious attachment sent to a company employee which upon openning gives the attacker access to the company networks. Such emails are written with a message of urgency instructing the reciepient to act fast otherwise something terrible might happen, makes business email compromise (BEC) a very "financially damaging" $26 billion scam, according to the FBI.

Unknown to the reciepient, when attackers gain access, they listen in on the ongoing communications within the company to locate individuals with administrator/root/superuser access which, when stolen, grants an attacker access to critical business data. A danish agricultural business suffered a ransomware attack when attackers used malware to embed malicious emails directly into user inboxes.

Such key individuals which superuser access are easy to find on LinkedIn where their profiles are visible including the positions they hold within the company. Critical business data, which is a data a company needs to deliver its products and services, literary data a company needs to survive besides which it cannot function. Once such data is stolen, attackers then activate ransomware whose impact leads to 60% of small businesses going bankrupt within six months.

To reduce the financial burden of a ransomware attack, its in the company's interests to invest in periodic cybersecurity awareness trainings that are fun and tailored to an employee's role within the firm to keep updated on the dynamic tricks of cyber criminals in manipulating employees to expose critical business information. 

Here are 5 phishing quizzes to help you become better at spotting scams (in no particular order), that take between 5-15 minutes of your time.

  1. Google phishing quiz, to help practice identifying phishing attempts that are meant to trick you into giving out personal information.

  2. Federal Trade Commission (FTC) cybersecurity quizzes that include:
    • Cybersecurity Basics Quiz
    • Physical Security Quiz
    • Ransomware Quiz
    • Phishing Quiz
    • Tech Support Scams Quiz
    • Vendor Security Quiz
    • Secure Remote Access Quiz

  3. OpenDNS phishing quiz with screenshots email messages the user is tasked with identifying as either fake or genuine.

  4. Sonicwall phishing IQ test enabling you to become better at recognizing a fake versus a legitimate email.

  5. Phishing box phishing test with ten random visual questions considering that 90 percent of cyber attacks start with a phishing email. 

  6. Australian cyber security center, "Know how to spot scam messages"quiz,  with the 4 questions that provide immediate feedback on what quiz-taker gets right or wrong.
In conclusion, invest in training your employees to become better at identifying fake from legitimate messages to reduce the likelihood of an attacker gaining access to critical business data with an impact of bankrupting the entire business. 

Let us know your phishing scores and share with your network.

Read more: