Phish or Not? :Cyber Security Awareness game for workshops
This game encourages participants to practice their phishing detection skills in a fun and engaging way, while also fostering teamwork and critical thinking. It's a great way to raise cyber security awareness and get people excited about the topic.
Materials Needed:
- Printouts of various email/message examples (some real phishing attempts, some legitimate)
- Scoring sheets for participants
How to Play:
-
Divide the participants into small teams of 3-4 people.
-
Distribute the printouts of email/message examples to each team.
-
Challenge the teams to review the examples and determine which ones are "phish" (fake/malicious) and which are "not" (legitimate).
-
Give the teams a set time limit (e.g., 10 minutes) to review the examples and mark their answers on the scoring sheet.
-
Once the time is up, go through the examples one by one, revealing whether they were "phish" or "not".
-
Teams get points for each correct identification. The team with the highest score at the end wins!
Optional Variations:
- Include a "maybe" option for examples that are more ambiguous.
- Provide additional context or details about the examples to make the game more challenging.
- Incorporate a "penalty" for incorrect guesses to discourage random guessing.
- Award bonus points for teams that can explain their reasoning behind their answers.
This game encourages participants to practice their phishing detection skills in a fun and engaging way, while also fostering teamwork and critical thinking. It's a great way to raise cyber security awareness and get people excited about the topic.
What's Your Reaction?
