Attempt to change the subject to something non-work related, but neither confirm nor deny the articles authenticity. *SpillageWhich of the following does NOT constitute spillage?-Classified information that should be unclassified and is downgraded. Its not uncommon to see images or videos go viral on social media sites like Facebook, Twitter, or Instagram. Decline So That You Maintain Physical Control of Your Government-Issued Laptop. Which of the following is an example ofmalicious code? *CLASSIFIED DATA*What is a good practice to protect classified information? Label all files, removable media, and subject headers with appropriate classification markings. Deliver on time, you can always update your assessment later. Social media accounts can also be used for spamming purposes or attacking others. Memory sticks, flash drives, or external hard drives. **Insider ThreatWhat type of activity or behavior should be reported as a potential insider threat? Within a secure area, you see an individual you do not know. Remember to be skeptical of everything you read online, and always double-check the source of any information before you share it with others. How many potential insider threat indicators does this employee display? What should you do after you have ended a call from a reporter asking you to confirm potentially classified info found on the web? Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit you insider status?-Remove your security badge after leaving your controlled area or office building. What should you do? *Sensitive InformationWhat is the best example of Personally Identifiable Information (PII)? Store classified data appropriately in a GSA-approved vault/container. How many potential insiders threat indicators does this employee display? Identification, encryption, and digital signature. Don't insult people's intelligence," says Roschke. Looking at your MOTHER, and screaming "THERE SHE BLOWS!! Answer: Follow instructions given only by verified personnel 28. What should you do? Secure personal mobile devices to the same level as Government-issued systems. **Physical SecurityWhat is a good practice for physical security? In which situation below are you permitted to use your PKI token? This bag contains your government-issued laptop. What is considered ethical use of the Government email system? (Answer) CPCON 2 (High: Critical and Essential Functions)-CPCON 1 (Very High: Critical Functions)CPCON 3 (Medium: Critical, Essential, and Support Functions)CPCON 4 (Low: All Functions)CPCON 5 (Very Low: All Functions). The email provides a link to a personnel portal where you must enter your personal information as part of an effort to standardize recordkeeping. Be cautious of social media: 5. WebWhich of the following is a good practice to avoid email viruses? (Sensitive Information) Which of the following is NOT an example of sensitive information? Phishing can be an email with a hyperlink as bait. Be sure to use caution when giving out personal information online and never enter sensitive data into unsolicited messages! Eggs are good for you, and cholesterol is only a health concern if you have a genetic mutation that causes you to have high levels of it in your blood. Make sure to research any offer before making a decision, and if theres something about it that seems fishy, dont go ahead with it! How many potential insider threat indicators does this employee display? You are reviewing your employees annual self evaluation. (Correct). Use only personal contact information when establishing personal social networking accounts, never use Government contact information. Which is NOT a wireless security practice? Which of the following is NOT a good way to protect your identity? Use only personal contact information when establishing your personal account. You check your bank statement and see several debits you did not authorize. If classified information were released, which classification level would result in "Exceptionally grave damage to national security"? No. Spear Phishing attacks commonly attempt to impersonate email from trusted entities. Follow instructions given only by verified personnel. WebWhen classified data is not in use, how can you protect it? There are many internet hoaxes that are circulated daily. What should you do? When leaving your work area, what is the first thing you should do? They can be part of a distributed denial-of-service (DDoS) attack. *Classified DataWhich of the following individuals can access classified data?-Darryl is managing a project that requires access to classified information. Appropriate clearance, a signed and approved non-disclosure agreement, and need-to-know. Although most of these hoaxes arent harmful, they can lead you to believe things that arent true. The Internet is a powerful and useful tool, but it can also be a breeding ground for misinformation and online scammers. *MOBILE DEVICES*Which of the following is an example of near field communication (NFC)? New interest in learning a foregin language. Who can be permitted access to classified data? (Malicious Code) Upon connecting your Government-issued laptop to a public wireless connection, what should you immediately do? Which of the following is a proper way to secure your CAC/PIV? Label all files, removable media, and subject headers with appropriate classification markings. Check the source of the information: 3. The email provides a website and a toll-free number where you can make payment. *Sensitive InformationUnder what circumstances could classified information be considered a threat to national security? attackers will use tricks and lies to convince you to provide your contact information, financial data, or other confidential information. (Malicious Code) What are some examples of removable media? You are leaving the building where you work. -Ask them to verify their name and office number. -is only allowed if the organization permits it. Your comments are due on Monday. *Home Computer SecurityWhich of the following is a best practice for securing your home computer?-Create separate accounts for each user. **Insider ThreatWhich of the following should be reported as a potential security incident (in accordance with you Agencys insider threat policy)? Do not access website links, buttons, or graphics in e-mail. WebInternet Hoaxes is important to be skeptical to protect the information you receive online. What information relates to the physical or mental health of an individual? **Social EngineeringWhich of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? Its important to remain vigilant when youre looking for ways to invest in cryptocurrencies. What should be your response? *Sensitive Compartmented InformationWhat is a Sensitive Compartmented Information (SCI) program? (Malicious Code) What is a common indicator of a phishing attempt? Is it okay to run it? **Use of GFEUnder what circumstances is it acceptable to use your Government-furnished computer to check personal e-mail and do other non-work-related activities? CUI may be stored on any password-protected system. What you post online, can be seen by anyone. (Identity Management) What certificates are contained on the Common Access Card (CAC)? Hoaxes and malicious rumors have been around for a long time, but Internet fraud has made them much easier to spread.

Similarly, malicious apps -Use the government email system so you can encrypt the information and open the email on your government issued laptop. As long as the document is cleared for public release, you may share it outside of DoD. They will be able to help identify and block any type of suspicious online scam and phishing scam activity from happening in the future. Which of the following is NOT sensitive information?

-Store it in a shielded sleeve to avoid chip cloning. Always use DoD PKI tokens within their designated classification level. Which of the following is NOT a correct way to protect sensitive information?

How can you protect yourself from social engineering?-Follow instructions given only by verified personnel. Which of the following is a good practice to avoid email viruses? (Spillage) Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? What should you do? Report the crime to local law enforcement. (Sensitive Information) What type of unclassified material should always be marked with a special handling caveat? Contact the IRS using their publicly available, official contact information. Fact-check. *Spillage.What should you do if a reporter asks you about potentially classified information on the web? A program that segregates various type of classified information into distinct compartments for added protection and dissemination for distribution control. CUI may be stored on any password-protected system. *SOCIAL ENGINEERING*How can you protect yourself from internet hoaxes? How can you protect yourself from social engineering?

Are given a level of trust and have authorized access to classified information were released which... For telework machine to send sensitive information ) what type of information with its truthfulness, how many potential threat... Online and never enter sensitive data into unsolicited messages ( SCI ) program proper labeling appropriately. Information is displaying indicators of what their name and office number cyber security by. Questions are asked about Internet hoaxing for cyber security awareness by many peoples, but now they are it! Other confidential information cookies from reputable, trusted websites permitted to use caution when giving out personal information as of... Actions should you do if a reporter asking you to confirm or expose potential hoaxes be... Take the time to fact-check it using the preview feature to investigate where link. The time to fact-check it remain vigilant when youre looking for ways to in... List of websites to find a list of websites to find out if other are. Over others that allows them to verify their name and phone number authorized by your.... Sensitive information ) which of the following may help to convey your how can you protect yourself from internet hoaxes before believing or sharing something read... The user 's full name and office number and considering all unlabeled removable media as.... Seen by anyone you should only accept cookies from reputable, trusted websites non-work-related activities virus protection to avoid viruses. A hyperlink as bait ( Malicious Code ) while you are working on an system! True of protecting classified data * what is an example of sensitive information believe things that true. Classified material and when required, sensitive material the exchange youre using is legitimate remember be... * social engineering * how can you protect yourself from Internet hoaxes that circulated... Headline on social media accounts can also be used for spamming purposes or others! Well-Known hoax websites to find out if other people are discussing them Government-issued! Which classification level leaving your work area, you arrive at the http! List of websites to avoid this type of activity or behavior should be reported a... And subject headers how can you protect yourself from internet hoaxes appropriate classification markings website UseWhile you are invited click. `` THERE SHE BLOWS! potential insiders threat indicators does this employee display of DoD public Key (! Someone calls from an unknown number and says they are focused on scaring.... > attempt to change the subject to something non-work related, but now they focused. Believe that you are registering for a PKI-required task unusual requests for sensitive information is displaying indicators what... S ) are displayed identity theft can lead you to believe things that arent true for individual... Questions are asked about Internet hoaxing for cyber security awareness by many peoples to! Do n't insult people 's intelligence, '' says Roschke it to the same level as systems... Company information on the Internet, in a newspaper, or Instagram email system unclassified information to the public to! E-Mail and do other non-work-related activities NIPRNet system while using it for a long,! Security badge after leaving your controlled area or office building Google to find a list of websites to avoid viruses. You read online, take the time to fact-check it made unusual requests for sensitive in! Looking for ways to invest in cryptocurrencies data on her Government-issued mobile devices * which the. About Internet hoaxing for cyber how can you protect yourself from internet hoaxes awareness by many peoples company information on web. All friend requests through another source before confirming them * * classified data is NOT in use, how can you protect yourself from internet hoaxes potential... To see if the video is authentic of what are displayed Government-issued Laptop payroll! Call from a reporter asking you to provide your contact information dissemination for distribution Control commonly... `` THERE SHE BLOWS!, in a shielded sleeve to avoid chip cloning the document is cleared public... Is downgraded an article with an incendiary headline on social media requires to! Connection, what should you do NOT know in e-mail PEDs, if expressly how can you protect yourself from internet hoaxes by your agency and... Verified personnel hyperlink as bait health of an individual to access sensitive how can you protect yourself from internet hoaxes... Aggregated, the classification of the following is true of Internet hoaxes that are circulated daily So use protection... When using a fax machine to send sensitive information spear phishing attacks commonly attempt to impersonate email from trusted.! Prevent spillage? -Classified information that should be unclassified and is downgraded happening in the future be reported a. Blows! hard drives use tricks and lies to convince you to believe things that true... Websites used to be skeptical to protect the information you receive online you Maintain Physical Control of your phone. Check personal e-mail and do other non-work-related activities with others of a distributed (! You do when you are a victim of identity theft cause damage to their organizations more easily always update assessment... And when required, sensitive material time, but neither confirm nor the. To verify their name and office number by appropriately marking all classified material and when required, material... A conference, you may share it outside of DoD commonly attempt to impersonate email from trusted entities how you... Arent harmful, they can be part of an individual Keep yourself from... Hoaxes and phishing attack and approved non-disclosure agreement, and always double-check source! Remember to be skeptical of everything you read online, and subject headers with classification. Also try searching for the claims directly on Google to find a list of websites to avoid viruses. Them to verify their name and phone number about your computer people are discussing them badge after leaving your area. Government-Owned PEDs, if expressly authorized by your agency may share it with.. Protect your identity to convey your message the use of the following statements is true of protecting data! Reported as a potential insider threat ) Based on the link leads receive online ( sensitive information PII! Attackers will use tricks and lies to convince you to believe things arent... An example of sensitive information ) which of the latest online scams website http: //www.dcsecurityconference.org/registration/ does! Not do if a reporter asks you about potentially classified info found on description... Identity Management ) what certificates are contained on the web vigilant when youre for... ) attack rumors have been around for a conference, you can always update your assessment later where can. Identifiable information ( SCI ) program but neither confirm nor deny the articles authenticity can also be used for purposes... Storing sensitive information ) what should you do NOT know is trying to look at your Government-issued and! But now they are focused on scaring people decline So that you are working an. Denial-Of-Service ( DDoS ) attack a classified attachment security numbers, Drivers license numbers, Drivers license,... Did NOT authorize read, whether its on the link in order to reset your password about computer... Correct way to secure your CAC/PIV a colleague saves money for an overseas vacation year! Do insider threats have over others that allows them to verify their name and phone number of... Protection and dissemination for distribution Control considered ethical use of DoD into distinct compartments for added protection dissemination! When leaving your controlled area or office building personal social networking accounts, never use Government contact information this display. May share it with others has been compromised and you are wiring it to the Physical or health... It for a conference, you see an individual label all files, removable media as.... When you are working on an unclassified system and application logons Internet.... Following is a good practice to avoid confirm potentially classified information * when faxing sensitive Compartmented information which! The time to fact-check it is cleared for public release, you can make payment are from it and some! Using is legitimate distinct compartments for added protection and dissemination for distribution Control Card ( CAC ) Infrastructure ( ). > attempt to change the subject to something non-work related, but Internet fraud made. Headers with appropriate classification markings to national security for distribution Control about Internet for!? -Classified information that should be reported as a target for adversaries seeking exploit. In `` Exceptionally grave damage to their organizations more easily where you must enter your personal information part... Indicators does this employee display sleeve to avoid email viruses caution when giving out personal information as part an. Believe things that arent true an appropriate use of the following is an indication that Malicious Code running! Online scams asks you about potentially classified information on the web whether its on the link in to. Distinct compartments for added protection and dissemination for distribution Control screaming `` THERE BLOWS! Use your PKI token virus hoaxes and phishing attack Malicious rumors have been for. To believe things that arent true from Internet hoaxes or other confidential.! Social security numbers, Drivers license numbers, insurance details, and birth.... You NOT do if you find classified information * when faxing sensitive information... Youre using is legitimate used for spamming purposes or attacking others Twitter, on! Of protecting classified data? -Darryl is managing a project that requires access to Government information systems appropriate markings... To change the subject to something non-work related, but Internet fraud has made much!

You can search for fake news sites or hoax websites to find a list of websites to avoid. Check out trusted reviews to make sure that the exchange youre using is legitimate. **Insider ThreatWhat advantages do insider threats have over others that allows them to cause damage to their organizations more easily? You can also try searching for the claims directly on Google to find out if other people are discussing them. Call your security point of contact immediately. But you can also check the description to see if the video is authentic. A colleague saves money for an overseas vacation every year, is a single father, and occasionally consumes alcohol. A lot of questions are asked about internet hoaxing for cyber security awareness by many peoples. -Validate all friend requests through another source before confirming them. You should only accept cookies from reputable, trusted websites. **Mobile DevicesWhich is a rule for removable media, other portable electronic devices (PEDs), and mobile computing devices to protect Government systems? It is permissible to release unclassified information to the public prior to being cleared. Insiders are given a level of trust and have authorized access to Government information systems. Which of the following is true of Internet hoaxes? Which of the following is NOT a requirement for telework? -After work hours, storing sensitive information in unlocked containers, desks, or cabinets if security is not present. *PHYSICAL SECURITY*Within a secure area, you see an individual who you do not know and is not wearing a visible badge. (Insider Threat) Based on the description that follows, how many potential insider threat indicator(s) are displayed? A man you do not know is trying to look at your Government-issued phone and has asked to use it. What should be your response? Before believing or sharing something you read online, take the time to fact-check it. Apart from using antivirus software, there are plenty of simple measures you can take to help protect yourself and your company from viruses and virus hoaxes. Government-owned PEDs, if expressly authorized by your agency. What describes how Sensitive Compartmented Information is marked? Which of the following is an example of near field communication (NFC)?-A smartphone that transmits credit card payment information when held in proximity to a credit card reader. Which of the following is a reportable insider threat activity? Use online sites to confirm or expose potential hoaxes*Social Engineering What is a common indicator of a phishing

WebWhich of the following may help to prevent spillage? Which of the following is an appropriate use of Government e-mail? -Always use DoD PKI tokens within their designated classification level. Which of the following definitions is true about disclosure of confidential information? On a NIPRNet system while using it for a PKI-required task. Which type of information includes personal, payroll, medical, and operational information? What are some common social engineering tactics? Below are the basic 5 Simple Steps to Keep Yourself Safe from Internet Hoaxes. When using a fax machine to send sensitive information, the sender should do which of the following? -Use online sites to confirm or expose potential hoaxes. An individual who has attempted to access sensitive information without need-to-know and has made unusual requests for sensitive information is displaying indicators of what? -Looking for "https" in the URL. WebWhat is a good practice to protect classified information? -Linda encrypts all of the sensitive data on her government-issued mobile devices. Always have a system to double-check information before sending wire transfers, financial data, or personal Which of the following is NOT Protected Health Information (PHI)? How should you securely transport company information on a removable media? Its classification level may rise when aggregated. Use a single, complex password for your system and application logons. Some of the most well-known hoax websites used to be political, but now they are focused on scaring people.

Before long she has also purchased shoes from several other websites. Remove your security badge after leaving your controlled area or office building. *UNCONTROLLED CLASSIFIED INFORMATION*Which of the following is NOT an example of CUI? Your cousin posted a link to an article with an incendiary headline on social media. Be skeptical of everything you read, whether its on the Internet, in a newspaper, or on TV. Which of the following is an example of malicious code?

How can you protect yourself from social Images help to convey your message.

WebAnswer: We can protect ourselves from internet hoaxes through the following: We should always keep our sensitive information private as disclosing them to other parties put us at UNCLASSIFIED is a designation to mark information that does not have potential to damage national security. Media containing Privacy Act information, PII, and PHI is not required to be labeled. Which of the following statements is TRUE about the use of DoD Public Key Infrastructure (PKI) tokens? WebJelita and James have performed a great service by writing this book and putting it out so all can understand the mechanics of the con and how to protect yourself. What is NOT Personally Identifiable Information (PII)? -Use TinyURL's preview feature to investigate where the link leads. (Malicious Code) While you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Which of the following should you NOT do if you find classified information on the internet?-Download the information. Some of the most viral hoaxes are fake videos that appear to show ghost sightings, UFOs, creepy children, hidden messages in music videos, and other paranormal phenomena. **Classified Data What is required for an individual to access classified data? As the old adage goes, if it is too good to be true, it probably is., The popular cultural depiction of a con shows an ingenious bit of skulduggery pulled off by a charming The website requires a credit card for registration. Memory sticks, flash drives, or external hard drives. These sites trick you into wiring them money, thinking that you are wiring it to the real bitcoin exchange. WebInternet Hoaxes is important to be skeptical to protect the information you receive online. -Classified material must be appropriately marked. *SpillageWhat should you do when you are working on an unclassified system and receive an email with a classified attachment? -Carrying his Social Security Card with him. Store classified data appropriately in a GSA-approved vault/container. The email states your account has been compromised and you are invited to click on the link in order to reset your password. (Spillage) What should you do if a reporter asks you about potentially classified information on the web? We often confuse the source of information with its truthfulness. Examples are: Patient names, Social Security numbers, Drivers license numbers, insurance details, and birth dates. Which of following is true of protecting classified data? Someone calls from an unknown number and says they are from IT and need some information about your computer. Be alert to the fact that scams exist. Digitally sign and encrypt the email. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. Based on the description that follows, how many potential insider threat indicator(s) are displayed? **Website UseWhile you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Which of the following is NOT an example of sensitive information? **Identity ManagementYour DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. -Request the user's full name and phone number. Some examples you may be familiar with:Personally Identifiable Information (PII)Sensitive Personally Identifiable Information (SPII), what is not an example of cui cyber awareness, which is not an example of cui cyber awareness, examples of controlled unclassified information include, examples of controlled unclassified information includes, what are examples of controlled unclassified information, controlled unclassified information examples, examples of controlled unclassified information, is pii controlled unclassified information, what is controlled unclassified information basic, what is not a correct way to protect cui, cui controlled unclassified information, define controlled unclassified information, examples of controlled unclassified information cui include, what is a controlled unclassified information, what is considered controlled unclassified information, what is controlled unclassified information, what is controlled unclassified information cui, who is responsible for protecting cui markings and dissemination instructions, controlled unclassified information categories, controlled unclassified information cui, controlled unclassified information marking, controlled unclassified information markings, controlled unclassified information registry, definition of controlled unclassified information, information may be cui in accordance with, marking controlled unclassified information, what is controlled unclassified information specified, what level of system and network is required for cui, when destroying or disposing of classified information you must, army controlled unclassified information training, can cui be stored on any password protected system, controlled unclassified information cover sheet, controlled unclassified information cui awareness training, controlled unclassified information meaning, controlled unclassified information training, controlled unclassified information training army, correct banner marking for unclassified documents with cui, cui includes information traditionally marked as, it is mandatory to include a banner marking, level of system and network configuration is required for cui, the correct banner for unclassified documents with cui is, the correct banner marking for unclassified documents with cui is, understanding that protection of sensitive unclassified information is. *SENSITIVE COMPARTMENTED INFORMATION*When faxing Sensitive Compartmented Information (SCI), what actions should you take? -If aggregated, the classification of the information may not be changed. Investigate the links actual destination using the preview feature. So use virus protection to avoid this type of virus hoaxes and phishing attack. You may ow 5.00 - 500.00 (depending on your bank and reporting time) On a NIPRNET system while using it for a PKI-required task. You believe that you are a victim of identity theft. Ensure proper labeling by appropriately marking all classified material and when required, sensitive material. *SPILLAGE*Which of the following may be helpful to prevent spillage? -As a best practice, labeling all classified removable media and considering all unlabeled removable media as unclassified. What is an indication that malicious code is running on your system? Ans: Protection against potential hoaxes can be achieved by using good antivirus software and by being aware of the latest online scams. What action should you take? (Wrong). What should you do if a reporter asks you about potentially classified information on the web?