Computer Science Grade 6 20 min

Common Cybersecurity Threats: Malware, Phishing, and Social Engineering

Explore common cybersecurity threats like malware (viruses, worms, Trojans), phishing, and social engineering, and learn how to identify and prevent them.

Tutorial Preview

1

Introduction & Learning Objectives

Learning Objectives Define malware, phishing, and social engineering in their own words. Identify at least three common signs of a phishing email or message. Explain how social engineering uses emotions like urgency or curiosity to trick people. Differentiate between a virus and other types of malware. List two actions they can take to protect their personal information online. Analyze a suspicious message and determine if it is a potential threat. Have you ever received a message saying you've won a free video game or a prize? 🤔 Let's learn how to tell if it's a cool prize or a sneaky trick! In this lesson, we'll become digital detectives! We will explore common online dangers called malware, phishing, and social engineering. Understanding these threat...
2

Key Concepts & Vocabulary

TermDefinitionExample CybersecurityThe job of protecting computers, devices, and information from being stolen or damaged. It's like being a security guard for your digital life.Using a strong, unique password for your email account is a basic cybersecurity practice. MalwareShort for 'malicious software,' it's any computer program designed to harm your computer or steal your data. It's a general term for all bad software.A computer virus is a type of malware that can copy itself and spread to other computers. PhishingA trick where a cybercriminal sends a fake email or message that looks real to fool you into giving them your personal information, like passwords or credit card numbers.You get an email that looks like it's from Netflix, saying your account is s...
3

Core Syntax & Patterns

The 'Too Good To Be True' Rule IF (offer is amazing) AND (it is unexpected) THEN (be suspicious) Use this rule when you see an offer for free items, prizes, or money that you didn't sign up for. Cybercriminals use exciting offers to make you click without thinking. The 'Check the Source' Rule ALWAYS verify the sender's full email address or phone number, even if the display name looks familiar. Apply this rule to every email and message you receive. Scammers can easily fake the display name (like 'Mom' or 'PayPal'), but the actual email address (like 'secure-support-x123@scam.com') often reveals the trick. The 'Hover Before You Click' Rule NEVER click a link directly. ALWAYS hover your mouse over it...

4 more steps in this tutorial

Sign up free to access the complete tutorial with worked examples and practice.

Sign Up Free to Continue

Sample Practice Questions

Challenging
A new puzzle game app you want to install on a phone asks for permission to access your contacts, location, and microphone. Why is this a major cybersecurity red flag?
A.The app might be spyware, collecting data it doesn't need for the game to work.
B.The app will use too much battery if it has all those permissions.
C.The app's developers made a mistake in the code.
D.All games need these permissions to post high scores online.
Challenging
You receive an email with a PDF attachment named 'Important_Project_Info.pdf' from a coworker you know. However, you weren't expecting any files from them. What is the most secure, multi-step course of action?
A.Open the PDF to see if it's important, then delete it if it's not.
B.Do not open the attachment. Contact your coworker using a different method (like a phone call or a new message) to ask if they sent it.
C.Reply to the email and ask if the attachment is safe to open.
D.Forward the email to your IT department, but also open the attachment so you can tell them what was inside.
Challenging
An attacker finds your name, school, and favorite video game from your public social media profile. How could they best use this information in a spear phishing attack against you?
A.Send you a generic email about winning a lottery.
B.Call your parents and pretend to be your teacher.
C.Send you an email pretending to be the game developer with a 'special offer' for a rare in-game item if you log in via their link.
D.Post a comment on your social media profile.

Want to practice and check your answers?

Sign up to access all questions with instant feedback, explanations, and progress tracking.

Start Practicing Free

More from Cybersecurity: Principles, Threats, and Defense Mechanisms

Introduction to Cybersecurity: Concepts and Principles Network Security: Firewalls, Intrusion Detection Systems (IDS), and VPNs Cryptography: Encryption and Hashing Authentication and Authorization: Access Control Mechanisms Web Security: Cross-Site Scripting (XSS) and SQL Injection

Ready to find your learning gaps?

Take a free diagnostic test and get a personalized learning plan in minutes.

Free Diagnostic Test Sign Up Free