Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
You just received an email with an attachment. Slow down and think things through. How do you know if it's legit?
1. Sender
Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
Do you recognize this sender? Are you expecting an email from them?
Correct: This is a common name and a Gmail address. It's important to be even more careful when opening attachments from strangers.
Incorrect: This is a common name and a Gmail address. It's important to be even more careful when opening attachments from strangers.
2. Curiosity
Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
Often times attackers will try and pique your curiosity with things that are too good to be true, a sense of urgency, flattery, or other suspicious word usage. Is this email suspicious?
Correct: The email is trying to lure you in based on curiosity. Always be extra cautious around suspicious emails.
Incorrect: The email is trying to lure you in based on curiosity. Always be extra cautious around suspicious emails.
3. Extension
Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
Check the file extension. You should never download a zip file from an untrusted or unfamiliar source, as attackers can place malicious applications inside them. Based on what you already know about this email, is this file type safe to download?
Correct: You should never download a zip file attachment from an unfamiliar or untrusted source.
Incorrect: You should never download a zip file attachment from an unfamiliar or untrusted source.
3. Extension (cont'd)
Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
If you have any suspicion regarding the email, sender, or content, do not open any attachments and contact your friendly neighborhood IT department.
3. Extension (cont'd)
Jessica Anderson <JAnderson@gmail.com> Quarterly Reportsyouremail@yourcompany.com Q3 Salaries.zip (20kb)
Hey there. Your company just leaked this quarter's salaries. I've been trying to get the word out. Looks like nobody's going to get raises for awhile. Check out the attachment and try and forward it around to others.
If you do open the zip file, there are a few risks to be particularly aware of.
4. Executables
Never run programs downloaded in zip attachments. Professional companies/individuals aren't going to do it this way, hackers are.
5. Attention
Always take things slow when you receive an attachment. Think before you act and be cautious, especially when you receive a zip attachment.
A Practical Example
For the next few slides, imagine you have asked a co-worker for the quarterly sales reports from last year. She has sent these reports to you by email, in a .zip file. Let's walk through this quick scenario, and look at things from a security standpoint!
The Email
Ashley Smith <ASmith@gmail.com> Quarterly Sales Reportsyouremail@yourcompany.com SalesReports2015.zip (2.2mb)
Hey there, friend! I've forwarded you the 2015 sales reports that you requested (see the attachment) Let me know if you need any more info from me. Have a great afternoon! --Ashley Smith
You've just received an email with the sales reports you requested. Looks like it's a .zip file! Make sure to verify the sender's name and email address closely; do you recognize this person? (For this scenario, let's imagine that you do recognize her). Were you expecting this email? (Let's imagine that you really had asked Ashley for these reports). Since everything checks out, go ahead and click on the .zip attachment.
x
Do you really want to download this file?
Downloading...
*Since we ARE expecting this email, and the extension is one we were expecting (.zip), let's go ahead and download it. (NOTE: No files will actually be downloaded to your computer during this simulation).
The Compressed Folder
Now that the .zip file has been downloaded, we need to extract the files from it. Go ahead and double-click the file.
x
Do you want to extract this file to C:\Downloads?
You should never extract .zip files sent to you by an unfamiliar source, but because we were expecting this one, go ahead and click 'Yes' to extract the .zip file.
(NOTE: No files will actually be downloaded/extracted to your computer during this simulation).
The Extracted Files
And there we have all the files we need! Once you open one of these Word documents, if you are prompted to "Enable editing" or to stay in "Protected View", we recommend the latter, if you are only going to be reading the document.
Things to Remember:
Check the sender's email address.
Be cautious of suspicious wording in the email.
Don't open executable files (.exe) sent through emails.
