Let's test what you learned!

1. True or false: Security awareness training should always be the main focus for preventing scams. 

2. Which of the following is not a potential strategy for mitigating the risks of social engineering attacks where a malicious actor impersonates another vendor? 

a. Blocking access to all other remote support tools 

b. Locking pin codes to only your support page 

c. Restricting use of Rescue to only specific IP addresses or Enterprise domains 

d. Educating employees to not trust accounts flagged as trials 

3. True or False: Allow listed hosts for pin entry eliminates the risks of attacks like Malvertising and URL hijacking. 

4. Which of the following are different ways you can reduce the risk of a malicious actor getting unauthorized access to unattended devices: 

a. Not having devices set up for unattended access unless strictly necessary 

b. Requiring administrative credentials at the start of every session 

c. Taking appropriate measures to protect technician credentials, like setting up MFA and strict password policies 

d. Using a remote support tool that uses a reusable id and password to grant unattended access  

e. Setting up time limits for when an unattended device can be accessed 

Click next to see the answers.