CYBERSECURITY MONTH JEOPARDY

Strong Passwords

MFA

Insider Threat

Quishing

That's What Todd Said

100

What things should you include in a strong password?

Uppercase, lowercase, numbers, and special characters

100

What is another name for MFA?

Two-factor Authentication (TFA)

100

True or False:

Everyone can be considered an inside threat.

True

(Anyone with access to internal data or resources is considered an insider threat)

100

Another term for quishing is ______

QR code phishing

100

Todd says, "if you see something, ___________"

Say Something

200

Use this to safely store passwords

Password Manager/Password Safe

200

Your finger print is considered something you ____

are

200

If you suspect a co-worker to be an insider threat, what should you do?

REPORT IT! (to CyberSecurity, HR, your manager, etc)

200

Why is it hard to detect and identify a quishing attack?

Because it is harder to verify where the QR code is directing to

200

According to Todd, if you see smoke, do this, and don't expect someone else to do it

Report it

300

True or False:

Using common phrases/words is considered a strong password; such as 'password'.

False

300

Freeport LNG uses this app for MFA.

Okta

300

True or False:

Someone who clicks suspicious links in an email is considered to be an inside threat.

True

300

What type of device is mostly used to scan a QR code?

A smartphone

300

DOUBLE POINTS!

One of Todd's tips for passwords to accounts you don't use often.

Use a random password, and just reset your password when you need that account.

400

Is this a strong password:

remote C00kie magnet

Yes

(Using random words are harder to guess, and spaces count as a special character)

400

Your Okta code is considered something you ____

have

400

Name a motive an insider threat might have.

Financial gain

Espionage

Personal Revenge

(Other answers can be accepted)

400

Using this allows you to upload a QR code and will show you the URL it directs to

QR code decoder

400

Based on Todd's story about the "help desk" calling an employee and asking for their Okta code. What is suspicious about it?

The help desk should never call you asking for your code.

500

Is this a strong password:

My password is a $ecret

500

The 3 MFA criteria are:

Something you ____

Something you ___

Something you know

Something you have

Something you are

500

Name an indicator that could indicate someone might be an inside threat.

Disgruntlement

Unexplained changes in financial circumstances

Unexpected desire to leave a company

(Other answers can be accepted)

500

DOUBLE POINTS!

What does "QR" stand for?

Quick Response

500

Todd recommends not forwarding suspicious emails because you have a higher chance of clicking the link because you _____ the sender

trust