Phishing Awareness Workshop

Recognize and avoid phishing attempts, scams, and social engineering attacks

What is Phishing?

Phishing is a cybercrime where attackers impersonate legitimate organizations to trick people into revealing sensitive information such as passwords, credit card numbers, or personal data. This workshop teaches participants how to recognize, avoid, and report phishing attempts.

Did You Know?

Over 90% of data breaches start with a phishing email. Learning to identify these attacks is one of the most important digital safety skills.

Common Phishing Types

Email Phishing

Fake emails from seemingly legitimate sources asking for personal information or containing malicious links

Spear Phishing

Targeted attacks personalized to specific individuals using information about them

Smishing (SMS)

Phishing attempts via text messages, often claiming urgent account problems

Vishing (Voice)

Phone calls from scammers pretending to be from banks, tech support, or government agencies

Red Flags to Watch For

Suspicious Email Indicators:

  • Urgent or threatening language - "Act now or your account will be closed!"
  • Requests for personal information - Legitimate companies never ask for passwords via email
  • Suspicious sender addresses - Check for misspellings like "paypa1.com" instead of "paypal.com"
  • Poor grammar and spelling - Professional companies proofread their communications
  • Generic greetings - "Dear Customer" instead of your actual name
  • Unexpected attachments - Don't open attachments from unknown senders
  • Suspicious links - Hover over links to see the real URL before clicking

Protection Strategies

How to Stay Safe:

  • Verify before you trust - Contact companies directly using official contact information
  • Use multi-factor authentication - Add an extra layer of security to your accounts
  • Keep software updated - Install security patches and updates promptly
  • Use strong, unique passwords - Different passwords for each account
  • Think before you click - If something seems off, it probably is
  • Report suspicious emails - Help protect others by reporting phishing attempts
  • Educate family members - Share what you learn with loved ones

Age-Specific Training

Ages 10-14: Digital Safety Basics

  • Understanding what phishing is with age-appropriate examples
  • Learning to ask a trusted adult before clicking links or sharing information
  • Recognizing "too good to be true" offers (free games, prizes, etc.)
  • Interactive games identifying safe vs. suspicious messages

Ages 15+: Advanced Awareness

  • Deep dive into social engineering tactics
  • Technical analysis of phishing emails (examining headers, URLs)
  • Understanding the psychology behind phishing attacks
  • Practical exercises with simulated phishing scenarios

Parents: Family Protection

  • Setting up family safety protocols
  • Teaching children about phishing without causing fear
  • Managing family email and online accounts securely
  • Creating a response plan for potential security incidents

Interactive Activities

Our workshop includes hands-on activities to reinforce learning:

  • Phishing Email Detective - Analyze real phishing examples and identify red flags
  • URL Analysis Challenge - Learn to spot suspicious links and fake websites
  • Social Engineering Role-Play - Experience common manipulation tactics in a safe environment
  • Security Setup Lab - Practice enabling two-factor authentication and other security features

Workshop Details

Duration: 90 minutes per session

Format: Interactive presentation with real-world examples and simulations

Materials Needed: Device with internet access, email account (for demos)

Group Size: 10-30 participants

Delivery: Available in-person and virtual

Back to Workshops Try Phishing Simulation