Cybersecurity and phishing awareness
Designed for New corporate employees to spark real collaboration and high-energy learning.
Provide essential security fundamentals including spotting email scams, password best practices, and reporting protocols without boring slide decks. Session constraints and alignment parameters selected by facilitator: [15 minutes, Online, Bored].
Inbox Mystery: Which Is Phishing?
Show on screen three screenshots of real-looking emails: one is a phishing attempt, one is company HR, and one is a genuine vendor. Ask everyone to silently pick which one they think is the scam and why. After private choices, reveal the hidden clues and let participants see how deceptive phishing can look.
Tap to view the full activity.
Why this works
Most people think they can spot fake emails, but these realistic examples force everyone to test their instincts and discover how easy it is to miss the details.
Password Myth: True or False?
Read out three popular claims about passwords: 'Adding a number makes it strong,' 'Changing passwords every month is safer,' and 'Password managers are risky.' Have everyone vote privately in a poll, then reveal which are myths and which are best practice.
Tap to view the full activity.
Why this works
People hold onto outdated security advice. Revealing the myths upfront helps reset everyone's beliefs and clears the way for better habits.
Safe Entry: Emoji Reaction Check
Ask everyone to respond to quick security scenarios using emojis — no speaking needed. For example: if an email asks you to reset your payroll password, send a 👀. If a vendor asks for your login, send a 🚫. This gets everyone moving and reacting without pressure.
Tap to view the full activity.
Why this works
Low-pressure, emoji-based participation keeps shy people involved and gives instant feedback without calling anyone out. It’s fast and fun.
Rapid Scam Spotting Showdown
Throw five real-life email subject lines on screen — some are attacks, some are not. Everyone has 30 seconds to type 'safe' or 'scam' for each in the chat. See who can spot the scams quickest, then reveal which fooled even the experts.
Tap to view the full activity.
Why this works
Fast-paced voting shakes up a bored room and turns spotting phishing into a fun, competitive game. The urgency helps people focus on key clues.
Reporting Dilemma: Manager or IT?
Share this scenario: You receive a suspicious email that looks like it could be from your manager. Without naming names, poll everyone — do you report to IT, reply to your manager, or ignore? After private votes, discuss why reporting is a professional move, not a personal accusation.
Tap to view the full activity.
Why this works
Using a dilemma that feels realistic for new employees helps them see security as part of their everyday workflow — not just an IT responsibility.
Your Security Story: Connect the Dots
Ask each participant to privately recall the closest call they’ve had with a suspicious email, password slip, or sharing info by accident. Pair up in breakout rooms to share their stories and connect what they learned to today’s security fundamentals.
Tap to view the full activity.
Why this works
Personal connection turns abstract risks into lived experiences. Hearing real stories from peers makes the topic stick.
Sign up to unlock 3 more activities
Get the full pack, facilitation flow, and more ready-to-run ideas.