Step 1: Social engineering tactics and impactsRead the Topic 1.1 guide and review the key terms for intimidation, urgency, elicitation, phishing, smishing, and vishing. Practice explaining how each tactic works and what happens to a victim who falls for it, focusing on the three impact categories: personal info, OTP theft, and malware.
Step 2: Password attacks and authentication defensesRead the Topic 1.2 guide and review the key terms for online password attack, dictionary attack, credential stuffing, MFA, OTP, passphrase, and password manager. Use the comparison table in the review notes to distinguish attack types and their specific defenses.
Step 3: Public Wi-Fi threats and wireless attack typesRead the Topic 1.3 guide and review the key terms for evil twin attack, jamming attack, war driving, SSID, WAP, VPN, and zero day. Practice classifying adversaries by skill level and matching each wireless attack to its mechanism and the correct defensive action.
Step 4: AI-augmented attacks and defensesRead the Topic 1.4 guide and review the key terms for deepfake, voice cloning, LLM, generative AI attack, prompt injection, and training data poisoning. For each AI attack type, write out the specific defense that counters it, including shared secrets and MFA for impersonation.
Step 5: AI in cyber defense and human oversightRead the Topic 1.5 guide and review the key terms for AI-powered cyber defense, automated detection system, and threat detection. Use the comparison table to connect each defensive use case to the correct human reviewer, then work through available practice questions to check your understanding across all five topics.