Free
Challenge: Teach a Person to Phish
National Cybersecurity Awareness Month has several themes, one of which is Phishing Awareness. This phishing challenge will have you analyze a real phish caught in the wild! The goal is to identify exactly why it was flagged as a phish and gain hands-on skills to validate a suspicious email!
1
H
0
M
Time
beginner
difficulty
1
ceu/cpe
Course Content
Course Description
Phishing awareness from a technical lens!
> In this [NCAM](https://www.cisa.gov/cybersecurity-awareness-month) weekly challenge, you will analyze a phishing email. This challenge aims to look beyond the basics of phishing prevention and critically examine what is happening under the hood. As a critical point, we have opened up the “show original” option for the received email, thus gaining access to all header information!1. After reviewing the headers, why did this email fail SPF? 2. What type of cryptography was used to validate that this email passed DKIM? 3. What action was taken on the email after it failed DMARC? 4. Based on what you know about SPF and DKIM, why did this email fail DMARC? 5. What other detail does not match in the email body, which should trigger concern?
![CySeeker Peculiar](//images.ctfassets.net/kvf8rpi09wgk/qbEzmd4efRzpA1lBEW8vZ/9fb4bc97f855861107cfa48daf666920/CySeeker_Peculiar.png)