I will be giving a presentation on \"cyber security\" to a school class of 16 ye
ID: 655863 • Letter: I
Question
I will be giving a presentation on "cyber security" to a school class of 16 year olds and want to show them how network security works, how important privacy is (and why it matters) and how to protect oneself online.
Apart from (static) general slides on the topic I want to show them in an visually appealing and understandable way how "hacking", tracking for advertisement and phishing works.
So far I have prepared:
- A WiFi hotspot with mitmproxy running to intercept a WhatsApp message sent from a prepared phone
- Wireshark running on the same hotspot to show them how easy it is to inspect their web traffic
- Firefox Lightbeam addon to show them how ad networks track them
Now I'm looking for more ideas / proofs of concepts of hacks that are easy to deploy / run and show how (in)secure something is.
What are good proof-of-concept implementations for general security awareness training?
Explanation / Answer
I'd add browser security. Take an old version of IE and show a browser exploit for it in action. Some people just can't understand that you either need to get a secure browser, or be very careful with what you browse, even if you're not downloading anything.
Also, something to stress is the danger of password reuse. I don't think there is a good way to demonstrate this, but it's an important topic.
You could instruct them on the dangers of "fake" websites. For example, make a slide with the screenshots of a real popular website like FB and a (real) high-quality "fake" of it, and see how many of them can tell which is the real one. You could also make two slides with different websites, an "easy" one with the address bar shown, and a "hard" one with the address bar hidden, to make it more of a challenge.
I'll update my post if I think of anything else.