DQ2 WK4

Riri01
DQ2.docx
Home>Information Systems homework help>DQ2 WK4

DQ2 100-150 words

Create an outline for a training session to help your team avoid phishing. What would you include in that training session? What are some typical signs that an e-mail might be fraudulent?

REPLY TO RESPONSES

A Jonathan Retes

Professor Gentry and Class,

           The training would primarily focus on teaching employees how to recognize the signs of phishing attacks, including emails with incorrect spelling and grammar, incorrect email addresses, and fraudulent URLs. I would provide simulations that will help employees become aware of phishing. I believe that by enforcing your company's security protocols to include recurring phishing simulation campaigns, you encourage your employees to question whether an email is real or a scam by making the simulations part of their workflow. There is no simple way to detect fraudulent emails or phishing scams. Knowing how these scams work and how to avoid falling prey to them is vital for you and your team.

           The outline for phishing would include creating awareness, PowerPoint presentations creating phishing simulation training. Presentations will have short and concise bullet points along with visual elements. I would like to spread out the training in chunks rather than an hour long drawn out session. And at the end of every session there will be a short quiz about phishing.

B Daniel Collura

Hello Class,

A foothold in company networks, access to crucial data like intellectual property, and in some cases, money is all provided by successful phishing attacks.  Phishing can take many different forms, but at its core, it refers to any email attack that aims to influence the receiver to do a particular action. This can involve opening a malware-filled attachment, following a link that takes you to a hacked website, or disclosing sensitive data like usernames and passwords. The most common signs of a phishing email unfamiliar tone or greeting, grammar and spelling errors, inconsistencies in email addresses and domains, suspicious attachment, and request for credentials, payment information, or other personal details. Identification is the first step and if you see something say something by reporting it to the proper response team.