Show:
RELEASE OF SENSITIVE INFORMATION
INFECTED COMPUTER/DEVICE
LOSS OF EQUIPMENT
TRANSMISSION OF UNENCRYPTED PII
PHISHING ATTEMPT
100

Who should be contacted if you have a question about whether information is sensitive? 

[A] Privacy Program Office 

[B] ITS Customer Support 

[C] Manager 

[D] None of the above

What is : [A] Privacy Program Office

100

What is not an example of malicious software? 

[A] Virus 

[B]spyware 

[C]Phishing 

[D]Worms

What is: [C] Phishing?

100
True or False:
When traveling should you place your OCC issued Equipment in Checked Luggage?

False

100
True or False


DO NOT use secure, encrypted email for non-official use.

What is: False


All email containing PII should be sent encrypted [Personal/Official]
100

What should you do before clicking on an email you are not familiar with?

[A] Check hyperlinks

[B] Don't click on it

[C] Click PhishMe Button

[D] All of the Above

What is: [D] All of the Above

200

How can you prevent Outlook from sending sensitive information to the wrong recipient?


What is: Disabling Outlook’s Auto Complete Feature?

200

When visiting external websites, how can you help prevent from becoming infected by malicious software? 

[A] Don't visit external sites 

[B] Exercise caution when clicking on links 

[C] Have your computer scanned by Customer Support 

[D] none of the above

What is: [B] Exercise caution when clicking on links?

200

If OCC issued equipment is lost, who should you notify?

[A] Contact GetHelp 1 (800) 788-7002

[B] Inform your supervisor

[C] File a stolen property report with the local police department and get a report number

[D] All of the Above

[D] All of the Above

200

Select all options that will send a secure email:

[A] Press the "Encrypt & Send" button in Outlook

[B] Type "OCCSecure" (without quotes) in the message subject

[C] Secure Email will occur automatically

[D] None of the Above

What is: [A] & [B]

[A] Press the "Encrypt & Send" button in Outlook

[B] Type "OCCSecure" (without quotes) in the message subject

200

You got a message from your mobile device: 

Apple Support:

Unusual activity from your Apple-ID. Update your Account to protect your personal information. 

https://tr.im/1Trmg

What type of phishing attempt is this ?

[A] Phishing [B] Vishing [C] Smishing [D] Whaling

[C] SMISHING = SMS + Phishing


300

The unauthorized disclosure of sensitive information compromises which security goal?

What is: Confidentiality?

300

Double Jeopardy


What is: Compromise sensitive information on the device or even entire network?

300

All OCC equipment, including laptops, mobile devices, and PIV cards are to be kept in your _________ possession at all times

What is: Physical

300

Where is the best place to put PII when transmitting unencrypted PII?

[A] The subject line of an email

[B] Body of email

[C] Second Paragraph with OCCSecure in front of text

[D] None of the above

What is: [D] None of the above?


300

You got an email from "Costco" saying that there is a 40% discount on your first purchase on a top of the line massage chair if you sign up for a new line of credit! 

How do you avoid being phished?

Go to Costco Website or call the store to verify if this is an actual deal.


400

How do you protect PII prior to sending it outside of the OCC? 

[A] Encrypt and Send 

[B] Encrypt and send the password 

[C] Encrypt before sending to personal email 

[D] All of the above

What is: [A] Encrypt and Send?

400

Who should you contact if you believe your computer has been infected? 

[A] ITS Customer Support 

[B] Cyber Security Office 

[C] Manager 

[D] All of the above

What is: [A] ITS Customer Support?

400

Any OCC equipment that is lost or stolen is a ______ risk and potentially dangerous.

[A] Potential

[B] Security

[C] Grave

[D] Exceptionally Grave

What is: [B] Security

400

Double Jeopardy


What is: [B] In an encrypted format

400

During tax season, you get a call from IRS asking for information so they can transfer refund money directly to your bank account.

What social engineering approach is this?

Vishing = Voice + Phishing

500

How can you help protect sensitive information when you need to leave your computer? 

[A] Remove PIV card 

[B] Close your office door 

[C] Lock up sensitive papers 

[D] All of the above

What is: [A] Remove PIV card?

500

How can you ensure your computer/device is protected?

What is: Install software updates?

500
True or False

It is the responsibility of some OCC employees and contractors to keep OCC equipment secure at all times, including while traveling, whether it is for business or pleasure.

What is: False - It is the responsibility of ALL OCC employees and contractors to keep OCC equipment secure at all times, including while traveling, whether it is for business or pleasure.
500

What type of email does the Privacy Program Office review?

[A] All email

[B] Email containing bank sensitive information

[C] Email containing my encrypted personal PII

[D] All outgoing unencrypted email containing PII

What is: [D] All outgoing unencrypted email containing PII?

500

The most impersonated brands used in phishing attacks throughout Q4 - 2020 

[A] Google

[B] LinkedIn

[C] Microsoft

[D] Amazon

Microsoft (related to 43% of all brand phishing attempts globally)


https://www.tessian.com/blog/phishing-statistics-2020/