What is a best practice to protect yourself from phishing attempts?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the ADE 1 Test with comprehensive quizzes. Enhance your knowledge with questions, hints, and explanations. Ace your exam confidently!

Multiple Choice

What is a best practice to protect yourself from phishing attempts?

Explanation:
Verifying who sent a message before taking any action is a key defense against phishing. The best practice is to check the sender’s email address before you click links or enter information. Phishers often imitate legitimate addresses by using look-alike domains or spoofed display names, so the visible name isn’t enough. Inspect the actual domain in the sender’s address, watch for typos or odd endings, and, if something seems off, don’t trust the message. Instead, reach out through official channels—use the organization’s website or known IT contact info—to confirm legitimacy, and report suspicious messages. Sharing your password with IT to verify identity is not appropriate and you should never disclose passwords; legitimate teams won’t ask for them this way. Clicking all links in suspicious emails is dangerous, as links can lead to fake login pages or malware. Responding with sensitive information to verify identity is exactly what these scams try to elicit, and should be avoided.

Verifying who sent a message before taking any action is a key defense against phishing. The best practice is to check the sender’s email address before you click links or enter information. Phishers often imitate legitimate addresses by using look-alike domains or spoofed display names, so the visible name isn’t enough. Inspect the actual domain in the sender’s address, watch for typos or odd endings, and, if something seems off, don’t trust the message. Instead, reach out through official channels—use the organization’s website or known IT contact info—to confirm legitimacy, and report suspicious messages.

Sharing your password with IT to verify identity is not appropriate and you should never disclose passwords; legitimate teams won’t ask for them this way. Clicking all links in suspicious emails is dangerous, as links can lead to fake login pages or malware. Responding with sensitive information to verify identity is exactly what these scams try to elicit, and should be avoided.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy