Phishing Types & Terms
This most common form of phishing uses mass emails impersonating real companies to capture personal info.
What is email phishing?
In MD Anderson email, this subject-line tag indicates the message originated outside the network.
What is “[EXTERNAL]”?
In STAR, the “S” reminds you to do this for one second before acting on an email.
What is “Stop”?
If you’re uncertain about an email’s legitimacy, this Outlook feature sends it to Cybersecurity for investigation.
What is the “Report a Phish” button?
A recent global incident involved this type of previously unknown software flaw exploited against older on‑prem SharePoint servers.
What is a zero‑day vulnerability?
When a text message tries to lure you to click a malicious link or share sensitive data, it’s called this.
What is smishing?
Leaders are responsible for communicating with employees and taking intentional steps to reduce this specific cybersecurity risk.
What is phishing email click rates?
The “T” in STAR stands for this—consider the action you’re about to take; when unsure, call to confirm or use Report a Phish.
What is “Think”?
Never provide your user ID or password—and never approve one of these if you didn’t initiate it.
What is a DUO push (MFA approval)?
The slide warns of fake verification windows that instruct you to press Windows+R, paste, and hit Enter—this is a form of what?
What is a malicious pop‑up / social engineering trick?
A phone call from “IT” asking for your MFA code is a classic example of this voice-based social engineering.
What is vishing?
Cybersecurity encourages staff to stay updated by regularly visiting this intranet area that houses the Cybersecurity Awareness Program and campaign information.
What is the Cybersecurity storefront / Cybersecurity intranet page?
This element at the top of external emails literally tells you to slow down.
What is the yellow warning banner?
Effective Sept. 1, 2025, this program escalates consequences for repeated phishing clicks over a rolling 24‑month period.
What is the Multiple Clicker Escalation Program?
Compared to other healthcare orgs, MD Anderson is particularly targeted by corporate credential phishing and this malicious software category.
What is malware?
Highly targeted, personalized emails crafted for one person or a small group fall under this term.
What is spear phishing?
This FY26 recognition initiative rewards individuals who accurately report phishing attempts, including those sent during MD Anderson campaigns.
What is the CyberSafety eCard program?
If you’re unsure about an email and you’re on your phone, the guidance says to wait and review it here instead.
What is on your computer (desktop) rather than mobile?
Under that program, a single click does not trigger enforcement, but the workforce member should do this.
What is review cybersecurity policy and tips (and continue training)?
One prevention best practice in the deck: don’t click links or open attachments when using this device type.
What is a mobile device (phone/tablet)?
An attacker impersonates a senior leader to request urgent payments or data. Name this attack category.
What is Business Email Compromise (BEC)?
Part of leadership responsibility is fostering a culture where employees demonstrate personal responsibility, accountability, and knowledge sharing to protect the institution. What is this broader concept called in the slides?
What is cybersecurity awareness and professionalism (or a cybersecurity‑aware culture)?
STAR aligns with this institutional reliability approach and skill set emphasized on the slide.
What is our HRO approach / Universal Skills for Reliability—paying attention to detail?
Name one possible higher‑tier consequence from the Multiple Clicker Escalation Program (e.g., performance rating impact, in‑person training, financial penalty, or risk of termination).
What is: “Needs Improvement” rating(s), in‑person training/discussion, documented corrective action, financial penalty, or risk of termination?
The deck highlights a campaign where Incident Command was activated and the cybersecurity threat level was escalated after this Microsoft product was breached.
What is Microsoft SharePoint (older on‑prem versions)?