There's no question about it: the "Three Questions Quiz" is a scam, regardless of which legitimate brand it's attempting to imitate.

Indeed, a new blog post from Akamai Technologies identifies 78 unique brands impersonated over the past year by this well-established online phishing scheme, in which victims are tricked into giving away personal information to the owner of a malicious website, after supposedly winning a prize for answering three questions.

"The ability to abuse 78 different brands shows the scale and level of sophistication that these campaigns have," wrote report author Or Katz, principal lead security researcher at Akamai. "The wide usage of same toolkit, abusing 78 different brands by the same threat actors in many cases, implies coordination at scale, which isn't something you see on a one-off campaign. Those responsible for these attacks are trying to impact as many as victims as possible with minimal effort."

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.