M4. Social Engineering and Phising Awareness

This learning unit aims to address the critical aspects of social engineering and phishing awareness in our digitally connected world. Similar to how cloud systems have transformed businesses, these topics are essential for safeguarding against emerging cybersecurity threats.

Aim: Upon the completion of this learning unit, the learner will be able to provide a clear definition of social engineering and understand its motivations, including financial gain and data theft. They will also identify various phishing techniques and attack vectors used by cybercriminals, enhancing their ability to detect and respond to such threats effectively. Furthermore, learners will recall the legal and ethical implications of social engineering attacks, fostering a responsible approach to cybersecurity.

The unit instils attitudes of ethical awareness, collaboration in incident response, and responsibility for legal compliance. It equips you with the tools to navigate the complex world of cyber threats with confidence and integrity, ensuring a secure digital future.

Learning Outcomes

KNOWLEDGE

K1. Define social engineering and its motivations.

K2. Identify Phishing techniques and attack vectors.

K3. Recall the legal and ethical implications of social engineering.

SKILLS

S1. Describe the primary motivations driving social engineering attacks.

S2. Recognize methods such as spear phishing, vishing (voice phishing), and pretexting.

S3. Understand the potential consequences for both perpetrators and victims.

RESPONSIBILITY AND AUTONOMY

RA1. Promote ethical awareness when defining social engineering motives for responsible, principled use of knowledge.

RA2. Collaborate with teams to mitigate phishing threats when identifying attack techniques and vectors.