Jump to content

Phishing Quiz


Evaders99
 Share

Recommended Posts

  • SWR Staff - Executive

http://www.siteadvisor.com/quizzes/phishing_0707/

 

Take it and see how well you can identify a phishing site. With so much spam and other junk coming from computers, identity theft has become a sport. Read all the text carefully.. I missed one due to the minor signs in the text.

Evaders99

http://swrebellion.com/images/banners/rebellionbanner02or6.gif Webmaster

http://swrebellion.com/images/banners/swcicuserbar.png Administrator

 

Fighting is terrible, but not as terrible as losing the will to fight.

- SW:Rebellion Network - Evaders Squadron Coding -

The cake is a lie.

Link to comment
Share on other sites

Hmm... 7 out of 10... and I'm suppose to be an Information Security major :P

 

I missed the Chase, Amazon, and Capital One websites. Those are tricky.

"In the future it will become easier for old negatives to become lost and be 'replaced' by new altered negatives. This would be a great loss to our society. Our cultural history must not be allowed to be rewritten." - George Lucas, 1988. [u.S. Congressional hearing testimony on film preservation.]

 

My old Rebellion site (very web 1.0) - Bud's Korner and Rebellion Strategy

Link to comment
Share on other sites

A nice post Evaders, that certainly woke me up to a few things I should pay attention to. In all honesty, I simply don't trust the Internet as a whole to feel comfortable enough to use my credit card these days online. Once in a blue moon if it's a product to tricky for a cheque in the post to a business, but that is fairly much hardly ever.

 

The explanation to where one screwed up was helpful. I think i'll hide my credit card where my monitor can't see it. :lol:

http://www.jahled.co.uk/smallmonkeywars.gif
Link to comment
Share on other sites

Quality thread E.

 

9 out of 10. The annoying thing is, how many people could spot half of these websites without being asked: "Which is the real one?"

Obviously were it through an email, poorley written or didn't use the correct logo's you'd be suspicious. But it really hightens how easy it can be to fool anyone :?

 

@dodododo: :lol: Hahaha :lol:

http://img146.imageshack.us/img146/1778/reloadedbannerdu8.gif

http://img152.imageshack.us/img152/1333/3dartistbanneranimationws1.gif

http://img154.imageshack.us/img154/4026/rebellionbannerdi2.gif

Link to comment
Share on other sites

I got 8 out of 10, but should have been 9. For some crazy reason I "picked" the wrong Amazon.com when I clearly mentioned "That's the fake" :? Must've been a "senior moment" :P

 

The other one I missed was Chase.

 

The simplest, best defense is NEVER click a provided link! Type in the url address manually; that should help immensely (But with some of our members, the ones who can't spell, you're in for deep doo-doo because there are other sites geared for your "typos". So sorry).

Finally, after years of hard work I am the Supreme Sith Warlord! Muwhahahaha!! What?? What do you mean "there's only two of us"?
Link to comment
Share on other sites

The simplest, best defense is NEVER click a provided link! Type in the url address manually

Exactly!

 

If you´ve got a mail from a company and you are not sure if it isn´t fake, don´t click on the link in that email. Open another browser-window and go to that site as usual. You may have bookmarked it. Than go to your account and there you may see if the message really came from that company.

 

It´s quite easy to see if you´ve got an authentical mail or not. If there´s a case where a company wants to inform you about some things or you have to confirm something, they will write: "Dear Mr. Eagle". In a phishing-mail they will rather just write: "Dear Costumer". Because they don´t know your real name. Another thing is that most of the phishing mails are written in a poor english. In fake mails they allways tell you that you have to confirm immediately your credit-card or whatever or you will loose your account or something like that. That´s most common on fake-mails for Ebay or Amazon. Both companies won´t close your account just because of some missing datas about your credit-card.

 

Like Mad just mentioned, you can see on the "https" if you are really on a secured site. The address-folder in your browser will also appear in a yellow colour to show you that the site where you have to confirm something is secured. Never give any important data if you are on a site which isn´t secured. The most common secure is SSL.

Who cares at all?! :roll:
Link to comment
Share on other sites

  • SWR Staff - Executive

Note that HTTPS doesn't actually mean the site is legitimate. That's what the quiz was trying to stress in one of the questions.

 

HTTPS just means is securing the data between yourself and the web site. Think of it this way... it's like an armored truck. It doesn't mean that the money its holding couldn't be delivered to a criminal's doorstep.

Evaders99

http://swrebellion.com/images/banners/rebellionbanner02or6.gif Webmaster

http://swrebellion.com/images/banners/swcicuserbar.png Administrator

 

Fighting is terrible, but not as terrible as losing the will to fight.

- SW:Rebellion Network - Evaders Squadron Coding -

The cake is a lie.

Link to comment
Share on other sites

9 out of 10.... stupid my-space... the only people who go to my-space are child-molesters an emo-kids...

 

J.k. incase some of you do go to myspace. :wink:

http://i151.photobucket.com/albums/s152/Dave-Mastor/Cluster6.jpg
Link to comment
Share on other sites

Only Rob goes to Myspace, and he's an Emo child-molester. :wink:

 

I feel so non-savvy. I got five out of ten, but then, I rushed through it and was looking for obvious signs that they were scamming you, such as asking for you social security number, asking you to recheck your password, not having a foreign language button if they're global, etc. :roll: Good thing that I can't and don't make any monetary transactions with the Internet!

12/14/07

Nu kyr'adyc, shi taab'echaaj'la

Not gone, merely marching far away

Link to comment
Share on other sites

Only Rob goes to Myspace, and he's an Emo child-molester. :wink:

 

Is that slander or libel? I forgot which is written and which is spoken...

And I prefer to do my stalkings on facebook, for your information. So check your sources next time you make wild accusations like that.

Your feeble skills are no match for the power of the Dark Side!

 

My Website

 

http://fp.profiles.us.playstation.com/playstation/psn/pid/BigBadBob113.png

Link to comment
Share on other sites

Is that slander or libel? I forgot which is written and which is spoken...

 

I belive it's libel.

 

Only Rob goes to Myspace, and he's an Emo child-molester. :wink:
...And I prefer to do my stalkings on facebook, for your information. So check your sources next time you make wild accusations like that.

 

Yeah, dude, check your sources! :roll: phfff.... jeez.

http://i151.photobucket.com/albums/s152/Dave-Mastor/Cluster6.jpg
Link to comment
Share on other sites

9 out of 10.... stupid my-space... the only people who go to my-space are child-molesters an emo-kids...

 

J.k. incase some of you do go to myspace. :wink:

Ahem! :|

 

But I´m there just since two weeks. And why? Of course a women was the reason. :roll:

Who cares at all?! :roll:
Link to comment
Share on other sites

Note that HTTPS doesn't actually mean the site is legitimate. That's what the quiz was trying to stress in one of the questions.

 

HTTPS just means is securing the data between yourself and the web site. Think of it this way... it's like an armored truck. It doesn't mean that the money its holding couldn't be delivered to a criminal's doorstep.

 

I believe SSL provides means of determining whether site is genuine or not. The site's certificate has to be signed by some certification authority. If it is self signed (which should not be the case of banks, eshops, etc.) or signed by unknown (or distrusted) CA, most browsers will complain and warn the user. In addition if the certificates have changed since the last visit, browsers will also warn the user of a possible phishing or man in the middle attack.

 

And I got 7 out of 10, my grammar sucks and this SSL related question got me too.

-rebellion2 enthusiast-

Terra Reconstructed

Link to comment
Share on other sites

  • SWR Staff - Executive
SSL doesn't mean anything. You can still buy a certificate signed by Verisign, Geotrust, etc... and it still doesn't mean its genuine. Fake mailing addresses and stolen credit cards makes it all easy to set up your own phishing site.

Evaders99

http://swrebellion.com/images/banners/rebellionbanner02or6.gif Webmaster

http://swrebellion.com/images/banners/swcicuserbar.png Administrator

 

Fighting is terrible, but not as terrible as losing the will to fight.

- SW:Rebellion Network - Evaders Squadron Coding -

The cake is a lie.

Link to comment
Share on other sites

SSL doesn't mean anything. You can still buy a certificate signed by Verisign, Geotrust, etc... and it still doesn't mean its genuine. Fake mailing addresses and stolen credit cards makes it all easy to set up your own phishing site.

 

Hmm, I guess you're right. Certificate signing can protect you from man-in-the-middle attacks, but not from phishing. Since my phishing domain name is not the same as the domain name of the site I'm trying to fake, browsers shouldn't complain. Sneaky.

-rebellion2 enthusiast-

Terra Reconstructed

Link to comment
Share on other sites

7 out of 10. :?

 

Fortunately, I usually read everything on the site before doing anything, and if I receive something that just seems plain odd or get asked for certain information I'm even a little unsure about, I call the customer service people (via the official page in my favorites or something else I know is legit) and ask about it. Of course, if I get the wrong info there, then I'm screwed. :roll:

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

Copyright (c) 1999-2022 by SWRebellion Community - All logos and trademarks in this site are property of their respective owner. The comments are property of their posters. Star Wars(TM) is a registered trademark of LucasFilm, Ltd. We are not affiliated with LucasFilm or Walt Disney. This is a fan site and online gaming community (non-profit). Powered by Invision Community

×
×
  • Create New...