Phish test - simple test to run by your family

[Omaroo (Chris Malikoff)]

"Phishing" is something that has become a way of life on the net. Data-extraction scams are everywhere, and often look half-legitimate.

My credit union, Macarthur Credit Union, has put out this little 5-question test that shows the typical things to watch out for when you're banking online. It's not at all technical and very quick. It may help you get your family to understand a couple of the obvious tricks which they use to trip you up and extract details from you that you'd rather keep. Obvious to some, but worthwhile any way.

http://macarthurcu.phishquiz.com.au/index.php

The company that designed it, Brighton Consulting, is here in Sydney on Kent Street, and has it running on behalf of many banks and credit unions.

http://www.brightonconsulting.com.au/phishquiz.html

Go here (Macarthur Credit Union Login page): https://ib2.inetbank.net.au/macarthur/ebank.jsp to see the source page. I use this page every day to log into my banking.

This page is legit, as is the test. Lots of credit unions are doing it.

They'll never get me - I got 5/5!

[duncan]

Hi Chris,

That one was easy, 5/5

[M54 (Molly)]

I got 5/5 too, but it's good to be reminded to keep your eyes peeled when banking.
Thanks for that Chris.

[Kevnool (Kev)]

5/5 Thanks Chris.
Cheers Kev.

[tlgerdes (Trevor)]

I hope this isn't a phishing or malware site Chris you are directing us too, can you prove that it is really you and not some fake Omaroo impersonating a nice guy.

[rally]

I wonder did they just get you ?

That site is not part of Macarthur Credit Union's domain but another domain entirely !

Since you are clicking on all their buttons and doing what they want you too - could that not be a fairly sure way to receive something malicious - if in fact that site was malicious ?

That is the very sort of site I would choose to avoid visiting and using in order to protect my system from infection and malware etc etc
Sure, if we know much more about it then that may make it safe - but I dont and that is the whole point - Is it not ? - to exercise considerable care about where you go and what sites you visit and what buttons you click on, what you download.

The whole point is that malicious sites use techniques to make you feel at ease and interact with them in order to penetrate your system !!!

The logic . . .
Omaroo did it, seems OK, he knows something about it, I trust Omaroo's judgement so I will visit it too . . . Bang - You're dead !

Now I realise that's alarmist and I know nothing of PhishQuiz - but isn't this the very point you were trying to make ?
One has to use their own judgement based on extremely limited knowledge.

I got 0/5 because I didnt do the quiz because it looked fishey to me !!

Hope its safe.

Cheers

[kinetic (Steve)]

Eggsactly...just what my wife and I were saying at page 1...so we
stopped.

Steve

Quote:

Originally Posted by rally

I wonder did they just get you ?

That site is not part of Macarthur Credit Union's domain but another domain entirely !

Since you are clicking on all their buttons and doing what they want you too - could that not be a fairly sure way to receive something malicious - if in fact that site was malicious ?

That is the very sort of site I would choose to avoid visiting and using in order to protect my system from infection and malware etc etc
Sure, if we know much more about it then that may make it safe - but I dont and that is the whole point - Is it not ? - to exercise considerable care about where you go and what sites you visit and what buttons you click on, what you download.

The whole point is that malicious sites use techniques to make you feel at ease and interact with them in order to penetrate your system !!!

The logic . . .
Omaroo did it, seems OK, he knows something about it, I trust Omaroo's judgement so I will visit it too . . . Bang - You're dead !

Now I realise that's alarmist and I know nothing of PhishQuiz - but isn't this the very point you were trying to make ?
One has to use their own judgement based on extremely limited knowledge.

I got 0/5 because I didnt do the quiz because it looked fishey to me !!

Hope its safe.

Cheers

[GrahamL]

They all looked good to me.

Guessed two , sure I would of got a third on the spelling but forgot the question and picked the wrong one... just take the money I'll be happier without it .

thanks Chris

no spyware detected from this site.

[Octane (Humayun)]

You know, before rubbishing the site and/or questioning Chris' motive, it may have helped to spend one minute on Google.

Phishquiz is an incentive set up by a UK consulting mob who take it upon themselves to educate organisations. I guess one of their services is public outreach by building a frontend for corporations hosted on the consulting companies own servers.

H

[Omaroo (Chris Malikoff)]

Guys - it's legit. Geez! You're not being asked to supply any detail whatsoever - you're choosing between two graphics via a simple javascript - that's all. The company that designed it, Brighton Consulting, is here in Sydney on Kent Street.

http://www.brightonconsulting.com.au/phishquiz.html

Go here (Macarthur Credit Union Login page): https://ib2.inetbank.net.au/macarthur/ebank.jsp to see the source page. I use this page every day to log into my banking.

This page is legit, as is the test. Lots of credit unions are doing it.

Another: http://macquariecu.phishquiz.com.au/question.php

[kinetic (Steve)]

I don't question Chris' motives blokes ,but Rally's point is a valid one just the same. It was worth mentioning if we are to have a balanced discussion about phishing?

[rally]

Octane,

I did Google it and followed about half a dozen links in the 10 minutes it took me to draft my post they went back to the site and presented the same but as a different Bank each time - fishey in my mind - I did not find what you found.

That was exactly what aroused my suspicions !

The greatest number of scams that have come onto my system were from people I know and trusted who unwittingly sent them or th links to me !
If I didnt exercise care I would have been fish bait !

In any event this is what gets people thinking about how to act safely !

Sorry if I caused any alarmist harm, but I did include in my argument the words "if in fact that site was malicious", "I know nothing of PhishQuiz" "One has to use their own judgement based on extremely limited knowledge" etc etc

If I always rely on other's judgement and don't make my own assessment and in this case err on the side of caution, then I will fail to protect myself in future.

My score stands at 0/5 - is that a Failure or a Pass - I am no longer sure !

Cheers

[tlgerdes (Trevor)]

I think I have unleashed a monster........................... it was supposed to be tongue in cheek.

I think Chris would be one of the last to have his ID compromised, that is why I pulled his chain.

[Omaroo (Chris Malikoff)]

Quote:

Originally Posted by tlgerdes

I think I have unleashed a monster........................... it was supposed to be tongue in cheek.

I think Chris would be one of the last to have his ID compromised, that is why I pulled his chain.

Yeah - good on you Trevor! LOL!

Rally - Your caution is already half the solution. Don't ever go somewhere you don't think may be Phishy. This one is OK, but there are certainly lots that aren't.

[Omaroo (Chris Malikoff)]

Quote:

Originally Posted by kinetic

The other half of Chris' avatar is a Cyberdyne network T-9000
that absolutely WILL NOT STOP until it has destroyed you

DAMN!

...discovered... argghhh!

[tlgerdes (Trevor)]

Quote:

Originally Posted by kinetic

The other half of Chris' avatar is a Cyberdyne network T-9000
that absolutely WILL NOT STOP until it has destroyed you

So, what you are really saying is, that you think he is a two faced cybernetic monster out to steal your money.

[Ric]

A very interesting little test and 5/5 for me as well.

Cheers Chris