HOW SECURITY-AWARE ARE YOU? TEST YOURSELF!

Many people are aware of the security risks out there, but our surveys of companies and other organizations suggest that when it comes to cyber security, the level of knowledge is somewhat lacking. So here are a few questions for you to consider, to test your own level of security awareness.

1. You visit your bank’s website and the address field in Internet Explorer turns green. What does this mean?

a: The bank is certified according to the ISO 14001 environmental standard.

b: The page you are visiting has been confirmed as being virus-free by Microsoft.

c: A reliable organization has verified that the page definitely belongs to the bank.

2. There’s a new person at work. You haven’t met them, but they want to add you as a contact on LinkedIn. What do you do?

a: Accept straight away. The more friends I have, the more popular I am, right?

b: Only accept if they’re attractive. It could be the start of a new office fling.

c: Don’t accept until you know who they really are.

3. A person from your helpdesk calls you and wants to verify some information. What do you do?

a: Nice to able to help them for once!

b: You try to verify that it really is the helpdesk, for example by calling them back.

c: It’s such a pain when people disturb you by calling when you’re trying to work! You ask them to call back tomorrow.

4. You get an email from someone in your HR department that should have gone to one of your managers, in which the manager is asked to confirm the attached salaries. The email also contains a file called Salaries_2017.xls. What do you do?

a: Call the HR person and tell them you probably shouldn’t have received the file.

b: Check your antivirus software is up-to-date and open the file.

c: You need to be quick before anyone realizes you shouldn’t have got it and asks you to delete it, so you open the file immediately.

5. You’ve joined a new gym and you create an account to allow you to book training sessions. Which of the following is a good standard for creating a password?

a: The name of your personal trainer; you associate it with the gym, so you won’t forget it.

b: A long word from the dictionary with certain letters replaced by similar numbers.

c: A combination of lower and upper case letters, a couple of figures and other special characters.

6. While waiting for one of your friends to respond to your latest snap, you notice an update for the operating system on your mobile. What do you do?

a. Update as soon as possible.

b. Ignore it. You’ve just thought of a good update for your snapstory – and it feels important not to forget it.

c. Think: I probably should update it, but usually forget to.

7. You’re watching cute cat videos online and you suddenly get a popup telling you you’ve won a free TV from Media Markt. What do you do?

a: Thank your lucky stars, you really needed one of those curved TVs like Oli’s! You quickly click on the link.

b: You send the link to all your friends. Share the joy!

c: You report the website to Media Markt and Google’s safe-browser team at https://www.google.com/safebrowsing/report_phish/

8. That cute guy you met at Marie’s sends a message via Facebook including a link. He’s abbreviated the address, but probably because he couldn’t be bothered to write it all out on his phone.

a: You click on the link. After all he said he was a policeman, so he must be trustworthy, right?

b: Ask one of your friends to open it instead. You can’t be too careful!

c: You check where the address actually takes you by using an online tool before you decide whether to click on the link.

9. You’ve got a few minutes to spare before yoga so you go to a café for a coffee. While drinking your coffee you connect to their free WiFi and go onto Facebook, but you end up at www.facebook.yhm.com. What do you do?

a. You assume it’s one of those load balancers or whatever they’re called. You know you entered the right name, so you log in as usual.

b. You explain to the staff that there’s something wrong with their DNS thingy and ask them to restart their access point.

c. You disconnect from the network and let the staff know what happened.

10. In cyber security, what’s it called when you manipulate someone else to get them to do something they know is wrong?

a. Social engineering.

b. Soft attacks.

c. Friendly fire.

Feel free to add your thoughts on this subject in the comments field. Cyber threats can come in many different guises, which is partly why cyber security is so challenging and fascinating.

Here at Combitech we’ve taken on the challenge of sharing knowledge about #CyberSecurity and raising security awareness in Sweden.

For example, one in three companies or organizations in Sweden have not ensured that everyone is aware of their security policy.We want to change this.

Correct answers to the questions: 1:c 2:c 3:b 4:a 5:c 6:a 7:c 8:c 9:c 10:a