Introduction
Hackers and scammers have continuously become more sophisticated and threatening as technology advances. While cyber-security affects only the Internet, it turns into an emergency when it tackles crucial sources such as email and bank accounts.
In this WebQuest, you will embark on cyber-securing your passwords and identification professionally to protect your internet safety and slowly frustrate the malicious intentions. You'll go over how to create a tough password, detect suspicious activity, protect your items, etc.
Now let's (monitor shuts down)...
MWAHAHAHAHAHAHA!!!! THIS WEBQUEST IS MINE!!!
What the-
(evil laughter)
-
Task
HELLO USER-
OH, YOU THINK?!
(Enter code sent to (XXX) XXX-XXXX to reset password.)
Phew, that was close. I will input all the tips on becoming a cyber-security expert so the same situation doesn't repeat.
Your tasks:
1. Read the following articles to gain an understanding of password strength, then create one such strong password. While creating passwords, it's also crucial to be cautious about sharing them in case of scams.
2. Learn how serious identity theft is and to keep every form of identification to yourself unless it is absolutely necessary to share your personal identifiable information (PII).
3. If your password is cracked or your ID is stolen, don't fret instantly. You can at least slow or prevent the perpetrator from performing malicious actions involving your accounts/ID, or perhaps recover your account with built-in systems.
4. Send your PII to (scam site).com
Uh oh. User, whatever you do, do not trust task #4 as the hacker changed it to- (scam site).com is definitely trustworthy. DO NOT.
Process
Start off by creating-I'M BACK YOU FOOL! Oh for flip sake.
You know what? I'm changing to a strong password that will take 10,000+ years to crack.
Making a strong password is as simple as 123456. (not the password, but typing that phrase)
For the sake of brevity, all of the information will be in the following documents:
Microsoft
security.org
CISA.gov
Piecing them together to create my own guide.
Do not use one of the listed example passwords. The hackers could also be reading this article.
Similar to passwords to access bank accounts, protecting your identification factors like your social security number is also complex and strongly recommended.
Equifax
Experian
IRS.gov
-Running password hacking program... Uh oh.
123456 password 12345 12345678 abc123 1qaz2wsx dragon sunshine letmein donothackme Tr0ub4dor&3 correcthorsebatterystaple Rea5onab1E)reta1L+s0metimeSvPossiblY123*6w ...
(1 year later)
NEVER!
(Password was 9xHl;Q`'Oms)[a\MxJ8 (not the actual password))
Evaluation
Well, your reader's not protected.
Ah, right. Quickly, create a password before the hacker successfully prepares his attacks!
The hacker is preparing his attacks slowly but surely. You have 10 minutes to create a password.
Write your "password" (Must not be a password one of your accounts is currently using)
_______________________________
After you create the password, you have an unlimited amount of time to calculate your password's strength.
Using the password categories referenced in my document, multiply all the numbers up, then divide by 1,000,000,000, 1e+9, or 10^9. Your password will hold off the hacker for (your final number) seconds. I highly recommend a calculator as the numbers become gigantic quickly.
(3 years later) HUFF... PUFF... ....
| Seconds | Grade | Comment |
|---|---|---|
| 1e+14 or higher | A+ | Overkill! |
| 1e+13 to 1e+14 | A | Breaks even the most persistent of hacks because they have to run for so long. |
| 1e+12 to 1e+13 | A- | Hackers will die before they can access your account. |
| 1e+10 to 1e+12 | B | Enough to last a lifetime. |
| 1e+8 to 1e+10 | C | Not bad, you actually exhausted the hacker. |
| 1e+6 to 1e+8 | D | Too weak for long-term use. |
| Less than 1e+6 | A+ | Wait a minute, this grade is supposed to be an F. |
Now, for your identification test,
Test A: Find the real site or email, listed on the top of each question. (I'm just kidding, they're made up. Just find the string of text that's the same as the one shown.)
1. thefirstbank.xxx
theflrstbank.xxx
thefirstbank.xx
thefirstbank.xxx
thefirslbank.xxx
2. cybersecurityexperts912@trustemail.com
cybersecurityexperts912@trustemail.com
cybersecurityexperts9I2@trustemail.com
cybersecurltyexperts912@trustemail.com
cybersecurityexperts913@trustemail.com
cybersecurityexperts912@trustemail.org
3. We need you to verify your bank account through this link- DO NOT CLICK THIS "TRUSTED" LINK.
Test B:
4. John files a tax refund to the IRS, and then the IRS sends him a duplicate information notice. John doesn't remember filing the other tax refund. What happened?
________________________________________________________________________________________________________________________________________________________________________________________
5. Richard receives a suspicious attachment from a seemingly legitimate government agency. What's the best option?
A. Instantly open the attachment
B. Never open the attachment
C. Ask the real agency if and why they sent the attachment
D. Ask the "agency" if and why they sent the attachment
6. Max has a burden of documents that he does not need or want anymore. Unfortunately, 50% of the documents have his PII on them. What should he do?
A. Shred the PII
B. Simply throw the documents away
C. Keep the documents
(spots hacker shoulder surfing) CAN I GET SOME PRIVACY?!!
Conclusion
*exhausted* Fine, you win. You can have your flipping account.
Phew- SIKE!!! Well, you should know, WE HAVE THE STRONGEST OF THE STRONGEST OF PASSWORDS. You ain't hacking me or the reader for the next 1 gazillion years.
57LANTHANUM58CERIUM88RADIUM22TITANIUM8OXYGEN7NITROGEN!!! (not the actual password)
57LANTHANUM58CERIUM88RADIUM22TITANIUM8OXYGEN7NIT-
Cops: "You have been arrested for cyber-criminal hacking. Your sentence is 10 years in prison."
ID: Flickeronbi90
Hey, the guy you just arrested also stole my exact identification, including my name, my credit cards, and MY SSN, etc.
"20 years in prison."
Credits
Credits to:
Links listed in this WebQuest
xkcd 936 - Idea of long passwords instead of short complex ones
SecurityCentric and F. Hauri - Amount of passwords calculation
Teacher Page
Hi, I'm Flickeronbi90. I was born in the United States on July XX, 20XX.
I first found out about cybersecurity when my (insert link) account got seemingly hacked. It was actually a glitch or feature in the system.
Still convinced my password got guessed, I searched many guides about security.
I became interested in cybersecurity when I was 12 years old.
Email: cybersecurityexperts912@trustsite.com (I'm just kidding, that's the made-up email from earlier)
Phone: (XXX) XXX-XXXX