Defending the Digital World Independent Review Lab

Grades 9-12 · CTE Information & Communications Technology

Cybersecurity
Review Lab

Use this after the lesson to review key threats, practice spotting clues, match defenses, and check your readiness independently.

Recall vocabulary

Phishing, social engineering, malware, ransomware, MFA, and encryption.

Match defenses

Verify, slow down, protect credentials, report, update, and back up.

Practice triage

Classify scenarios, cite evidence, and recommend a safe response.

Review Warm-Up

New message: would you click it?

From: calendar-alerts@campus-events.net. A message says you missed a required safety training and must sign in with your school password through a shortened link before 5 p.m.

Defender Routine

  1. Who is the sender or requester?
  2. What action are they asking for?
  3. What evidence suggests risk?
  4. What could happen if I comply?
  5. What safe response should I choose?

Vocabulary Review

Threats from the lesson

PHI

Phishing

A deceptive message or site that tricks users into revealing credentials or clicking malicious links.

Clues

Urgency, mismatched sender, suspicious link, credential request.

SOC

Social Engineering

Psychological manipulation using trust, fear, urgency, or authority to bypass security steps.

Clues

Pressure to bypass normal steps, secrecy, unusual requests.

MAL

Malware

Malicious software designed to spy, disrupt, or gain unauthorized access to a device or network.

Clues

Unknown downloads, disabled protections, unexpected warnings.

RAN

Ransomware

A malware type that encrypts files and demands payment before restoring access.

Clues

Locked files, payment demand, sudden loss of access.

Verify before you trust Slow down urgent requests Protect credentials Backups Updates Encryption Reporting

Independent Practice 1

Pair each threat with its strongest defense

Drag each defense card into the matching threat terminal. On a touch screen, tap a defense and then tap a threat terminal.

Phishing

Unexpected sign-in links, look-alike forms, credential requests, suspicious senders.

Drop defense here

Ransomware

Encrypted files, restore instructions from attackers, payment pressure, blocked access.

Drop defense here

Malware

Fake installers, unknown attachments, risky files, requests to disable protections.

Drop defense here

Social Engineering

Impersonation, urgency, secrecy, requests to bypass normal verification steps.

Drop defense here
Match all four defenses, then check your work.

Independent Practice 2

New Scenario Classification

Apply what you learned to new situations. For each one, classify the threat, cite evidence from the text, and choose the safest defense.

Scenario 1 of 4

Scholarship Form

Lesson Review

Check your understanding

1. A club fundraising email links to a login page at school-donations-login.com. What is the strongest red flag?
2. Someone has your password, but your account asks for an app approval too. Which defense is helping?
3. A shared class folder is suddenly unreadable and a note demands payment. What should happen first?
4. A classmate asks you to send the verification code from your phone so they can "fix" a login problem. What should you do?
5. A pop-up says to install a "required video player" and ignore browser warnings. What threat is most likely?

Key Takeaways

What to remember after the lesson

Threats target humans first

Phishing, social engineering, malware, and ransomware exploit human decisions, not only technical gaps.

Analyze before acting

Stop and ask: Who sent this? What do they want? What could go wrong? What is the safe response?

Layered defenses reduce risk

MFA, backups, updates, encryption, access controls, and reporting each cover different attack paths.

Ethics protect people

Report correctly, preserve evidence, and never forward suspicious links or expose private information.

Before You Go

Reflect on your readiness

Finish with a new reflection: identify one clue from today’s practice, choose one habit to change, and rate your understanding.

My Defender Summary

Complete the lab and exit ticket to build your summary.