Computer Science Grade 6 20 min

Common Cybersecurity Threats: Malware, Phishing, and Social Engineering

Explore common cybersecurity threats like malware (viruses, worms, Trojans), phishing, and social engineering, and learn how to identify and prevent them.

What you'll learn

  • Identify and classify at least three distinct types of malware (e.g., viruses, worms, Trojans, ransomware, spyware) based on their mechanisms of infection and propagation, achieving 80% accuracy on a summative quiz.
  • Explain the technical and psychological principles behind phishing and social engineering attacks, providing at least two specific examples of each and analyzing their potential impact on individuals and organizations in a written report graded using a rubric with clear criteria for analysis and explanation.
  • Apply critical thinking skills to analyze simulated phishing emails and social engineering scenarios, correctly identifying at least 80% of the deceptive elements and suggesting appropriate preventative measures in a class discussion.
  • Compare and contrast the effectiveness of various cybersecurity countermeasures (e.g., anti-malware software, firewalls, multi-factor authentication, security awareness training) in mitigating malware, phishing, and social engineering threats, justifying their recommendations based on specific threat scenarios in a group presentation assessed via a standardized rubric.

Tutorial Preview

1

Introduction & Learning Objectives

Learning Objectives Define malware, phishing, and social engineering in their own words. Identify at least three common signs of a phishing email or message. Explain how social engineering uses emotions like urgency or curiosity to trick people. Differentiate between a virus and other types of malware. List two actions they can take to protect their personal information online. Analyze a suspicious message and determine if it is a potential threat. Have you ever received a message saying you've won a free video game or a prize? 🤔 Let's learn how to tell if it's a cool prize or a sneaky trick! In this lesson, we'll become digital detectives! We will explore common online dangers called malware, phishing, and social engineering. Understanding these threat...
2

Key Concepts & Vocabulary

TermDefinitionExample CybersecurityThe job of protecting computers, devices, and information from being stolen or damaged. It's like being a security guard for your digital life.Using a strong, unique password for your email account is a basic cybersecurity practice. MalwareShort for 'malicious software,' it's any computer program designed to harm your computer or steal your data. It's a general term for all bad software.A computer virus is a type of malware that can copy itself and spread to other computers. PhishingA trick where a cybercriminal sends a fake email or message that looks real to fool you into giving them your personal information, like passwords or credit card numbers.You get an email that looks like it's from Netflix, saying your account is s...
3

Core Syntax & Patterns

The 'Too Good To Be True' Rule IF (offer is amazing) AND (it is unexpected) THEN (be suspicious) Use this rule when you see an offer for free items, prizes, or money that you didn't sign up for. Cybercriminals use exciting offers to make you click without thinking. The 'Check the Source' Rule ALWAYS verify the sender's full email address or phone number, even if the display name looks familiar. Apply this rule to every email and message you receive. Scammers can easily fake the display name (like 'Mom' or 'PayPal'), but the actual email address (like 'secure-support-x123@scam.com') often reveals the trick. The 'Hover Before You Click' Rule NEVER click a link directly. ALWAYS hover your mouse over it...

4 more steps in this tutorial

Sign up free to access the complete tutorial with worked examples and practice.

Sign Up Free to Continue

Sample Practice Questions

Challenging
A new puzzle game app you want to install on a phone asks for permission to access your contacts, location, and microphone. Why is this a major cybersecurity red flag?
A.The app might be spyware, collecting data it doesn't need for the game to work.
B.The app will use too much battery if it has all those permissions.
C.The app's developers made a mistake in the code.
D.All games need these permissions to post high scores online.
Challenging
You receive an email with a PDF attachment named 'Important_Project_Info.pdf' from a coworker you know. However, you weren't expecting any files from them. What is the most secure, multi-step course of action?
A.Open the PDF to see if it's important, then delete it if it's not.
B.Do not open the attachment. Contact your coworker using a different method (like a phone call or a new message) to ask if they sent it.
C.Reply to the email and ask if the attachment is safe to open.
D.Forward the email to your IT department, but also open the attachment so you can tell them what was inside.
Challenging
An attacker finds your name, school, and favorite video game from your public social media profile. How could they best use this information in a spear phishing attack against you?
A.Send you a generic email about winning a lottery.
B.Call your parents and pretend to be your teacher.
C.Send you an email pretending to be the game developer with a 'special offer' for a rare in-game item if you log in via their link.
D.Post a comment on your social media profile.

Want to practice and check your answers?

Sign up to access all questions with instant feedback, explanations, and progress tracking.

Start Practicing Free

More from Cybersecurity: Principles, Threats, and Defense Mechanisms

Introduction to Cybersecurity: Concepts and Principles Network Security: Firewalls, Intrusion Detection Systems (IDS), and VPNs Cryptography: Encryption and Hashing Authentication and Authorization: Access Control Mechanisms Web Security: Cross-Site Scripting (XSS) and SQL Injection
Continue in Grade 6 Computer Science

Computer Science for other grades

Kindergarten Computer Science Grade 1 Computer Science Grade 2 Computer Science All Computer Science grades

Frequently asked questions

What grade level is "Common Cybersecurity Threats: Malware, Phishing, and Social Engineering"?

Common Cybersecurity Threats: Malware, Phishing, and Social Engineering is a Grade 6 Computer Science lesson on ExcelOS.

What will I learn in Common Cybersecurity Threats: Malware, Phishing, and Social Engineering?

You'll be able to: Identify and classify at least three distinct types of malware (e.g., viruses, worms, Trojans, ransomware, spyware) based on their mechanisms of infection and propagation, achieving 80% accuracy on a summative quiz; Explain the….

Is "Common Cybersecurity Threats: Malware, Phishing, and Social Engineering" free to practice?

Yes. You can read the tutorial preview for free, and signing up for a free ExcelOS account unlocks the full tutorial and all practice questions with instant feedback.

How many practice questions are included with Common Cybersecurity Threats: Malware, Phishing, and Social Engineering?

This lesson includes 27 practice questions across multiple difficulty levels, each with instant feedback and explanations.

Ready to find your learning gaps?

Take a free diagnostic test and get a personalized learning plan in minutes.

Free Diagnostic Test Sign Up Free