Kristin’s trip to the interactive training room turns into a high-stakes digital simulation.

Learning Objectives:

• Summarize the HTTPS Myth
• Identify characteristics of social engineering tactics
• Recognize technical red flags, including lookalike domains and risky file extensions
• Apply active browser hygiene practices

Daryl has just started a new job at an architecture firm, but his suspicions are already growing about another employee.

Learning Objectives:

• Define insider threats and their motives
• Analyze the different types of insider threats
• Understand the four primary categories of harm caused by insider threats
• Recognize common red flags and suspicious behaviors that require immediate reporting

When Drew and Terrance go hunting for help with their engagement, they fall for a fake support scam that turns their “premium” dreams into a digital nightmare.

Learning Objectives:

• Understand the risks of AI-generated responses
• Identify AI poisoning and its motives
• Recognize AI poisoning red flags
• Respond appropriately to suspicious AI responses

An introduction to cyber threats and how to protect yourself against them.

Learning Objectives:

• Understand how cyber threats affect everyone
• Identify common cyberattack red flags and tactics
• Differentiate common phishing types and tactics
• Use strong passwords, password managers, and MFA to protect accounts
• Apply safe practices when working remotely or in public
• Recognize AI-enabled threats and report concerns

When DeeDee's snack turns sour, she takes the bait on revenge, learning there's more than one way to phish for trouble.

Learning Objectives:

• Summarize phishing and why it remains a major threat
• Demonstrate how to identify a phishing email
• Understand new and evolving phishing methods
• Identify a phishing attempt by recognizing red flags
• Apply safe practices to avoid falling victim to a phishing attack

• Explain how cybercrime runs like a business
• Illustrate how cybercriminals profit from stolen information
• Highlight the specialized roles in the cybercrime supply chain
• Emphasize that everyone is a potential target
• Demonstrate safe online habits to avoid becoming a victim of cybercrime

• Understand elevated privileges and how they increase user vulnerability
• Identify tactics used to steal privileged accounts
• Explain the risks of overprovisioned access and accidental misuse
• Learn the benefits of not having elevated privileges
• Apply safe practices for responsibly managing elevated privileges

Willie’s dream getaway is just days away when a suspicious toll text demands quick action. Smishing, or SMS phishing, attempts to trick victims into clicking sketchy links or sharing sensitive info. These attacks often pose as urgent messages from “trusted” sources, such as fake toll road alerts, shipping confirmations, or past-due payment notices. Willie’s phony toll alert is a classic bait-and-switch, looking for victims to fall into the trap of identity theft, financial fraud, or malware attacks. Willie must stay alert to avoid having his plans—and more importantly, his personal data—compromised.

• Recognize common signs of a smishing text
• Identify tactics scammers use in toll text scams
• Understand the potential risks of smishing
• Respond appropriately to suspected smishing messages

• Recognize key signs of a spear phishing attempt
• Identify fake landing pages and spoofed websites used in spear phishing
• Understand how attackers use personal information and OSINT to target individuals
• Use safe online habits to reduce the risk of phishing
• Respond appropriately to suspected spear phishing emails
• Understand what Living Off Trusted Sites (LOTS) is and the associated risks