PDA

View Full Version : phishing test


lapietra
11-09-2007, 08:03 PM
Just took this & got 10 out of 10. How will you do?

(Note: the person who sent this to me just included the link in their email. I wrote back & said I wouldn't click it 'cos I thought that was the test :D It isn't.)

phishing test by SonicWall (http://www.sonicwall.com/phishing/)

auntie aubrey
11-10-2007, 12:43 AM
"if you don't get authenticated in the next 48 hours..."

yeah. that sounds like a professional communication.



i got 8 out of 10 because i evaluated two "legitimate" emails as phishing. however i will say that i disagree with their assessment of #9. they judged the link as legitimate because mousing over it revealed a URL that started with https. this is not a guarantee and it's dangerous to trust that.

last year i received a legitimate seeming email from paypal that contained a link to an address that started with https://www.paypal.com. turns out it was a masked URL. once clicked the URL then forwarded itself to a server based in japan. just mousing over the link and inspecting the URL is no way to guarantee your safety. you should still open a new browser window and enter the URL for the site manually.

lapietra
11-10-2007, 05:41 AM
"if you don't get authenticated in the next 48 hours..."

yeah. that sounds like a professional communication.



i got 8 out of 10 because i evaluated two "legitimate" emails as phishing. however i will say that i disagree with their assessment of #9. they judged the link as legitimate because mousing over it revealed a URL that started with https. this is not a guarantee and it's dangerous to trust that.

last year i received a legitimate seeming email from paypal that contained a link to an address that started with https://www.paypal.com. turns out it was a masked URL. once clicked the URL then forwarded itself to a server based in japan. just mousing over the link and inspecting the URL is no way to guarantee your safety. you should still open a new browser window and enter the URL for the site manually.

yup - I think that's how I tested #9 - some of those took more than just a good hard read :) Don't reveal any more!

lukkucairi
11-10-2007, 01:19 PM
9 out of 10

I judged a legitimate one to be phishing, but it was written poorly.