What is the difference between a virus and malware?

Malware is a broad term for any malicious software designed to harm or exploit devices, including viruses, worms, ransomware, and spyware. A virus is a specific type of malware that replicates itself by attaching to other programs or files. So, all viruses are malware, but not all malware is a virus. Understanding this distinction helps you identify the right protection measures.

How can I tell if an email is a phishing attempt?

Phishing emails often have telltale signs: generic greetings (e.g., 'Dear Customer'), urgent language demanding immediate action, suspicious links or attachments, poor grammar or spelling, and mismatched email addresses (e.g., the display name says 'PayPal' but the actual email is from a random domain). Always hover over links to see the real URL before clicking, and never share personal information via email.

What should I do if I think my online account has been hacked?

Act quickly: change your password immediately (use a strong, unique one), enable two-factor authentication if available, check for any unauthorised changes to your account settings, and review recent activity. If you can't access your account, use the provider's recovery options. Also, run a security scan on your device for malware. Report the incident to the platform's support team and consider alerting your bank if financial details are involved.

Is it safe to use public Wi-Fi for online banking?

Public Wi-Fi networks are often unsecured, making it easier for hackers to intercept your data. Avoid accessing sensitive accounts like banking or email on public Wi-Fi unless you use a VPN (Virtual Private Network) that encrypts your connection. If you must use public Wi-Fi, ensure websites use HTTPS (look for the padlock icon) and turn off file sharing. Better yet, use your mobile data for sensitive transactions.

What is a digital footprint and why does it matter?

Your digital footprint is the trail of data you leave online, including social media posts, comments, search history, and even cookies from websites. It matters because it can be used by companies for targeted advertising, by employers during background checks, or by cybercriminals for identity theft. Being mindful of what you share and adjusting privacy settings can help control your footprint.

How do I report cyberbullying?

Most social media platforms and online services have built-in reporting tools—look for 'Report', 'Block', or 'Flag' options. Save evidence like screenshots and messages. If the bullying involves threats or harassment, report it to the police via 101 or online at Action Fraud. You can also contact organisations like Childline (for under-18s) or the National Bullying Helpline for support. Never retaliate or engage; block the bully and tell a trusted adult.

Internet Safety for IT users

TRAINING QUALIFICATIONS UK LTD

vocational

This subtopic covers the essential knowledge required to identify and mitigate online risks, including malware, phishing, and social engineering. Learners will explore practical strategies for safeguarding personal information and respecting legal frameworks such as data protection and copyright laws, ensuring responsible digital citizenship.

Learning Outcomes

Assessment Guidance

Key Skills

Key Terms

Assessment Criteria

Assessment criteria

TQUK Level 1 Award in Internet Safety for IT Users (RQF)

Topic Overview

The TQUK Level 1 Award in Internet Safety for IT Users (RQF) is a foundational qualification designed to equip students with the essential knowledge and skills to stay safe online. This unit covers key areas such as protecting personal data, recognising online threats like phishing and malware, understanding digital footprints, and practising responsible behaviour on social media and other platforms. It is a vital component of digital literacy, preparing learners to navigate the internet confidently and securely in both personal and professional contexts.

In today's interconnected world, internet safety is not just an optional skill but a necessity. This qualification addresses the growing risks of cybercrime, identity theft, and online harassment, ensuring students can identify potential dangers and take appropriate action. By mastering these concepts, learners build a strong foundation for further study in IT or digital skills, and they develop critical thinking that applies to everyday online interactions—from shopping and banking to social networking and remote work.

This award fits within the broader Digital Skills & IT curriculum as a core life skill. It complements technical IT qualifications by emphasising the human and behavioural aspects of cybersecurity. Students who complete this unit will be better prepared to handle real-world scenarios, such as securing accounts, reporting harmful content, and understanding the legal implications of online actions. The knowledge gained here is transferable across all digital activities, making it an essential stepping stone for responsible digital citizenship.

Key Concepts

Core ideas you must understand for this topic

→Personal data protection: Understanding what constitutes personal information (e.g., name, address, bank details) and how to keep it private, including using strong passwords and two-factor authentication.
→Recognising online threats: Identifying common cyber threats such as phishing emails, malware, ransomware, and social engineering tactics, and knowing how to respond safely (e.g., not clicking suspicious links).
→Digital footprint: Awareness that every online action leaves a trace, including posts, searches, and downloads, and understanding how this can be used by others (e.g., employers, hackers).
→Safe social media use: Applying privacy settings, thinking before posting, avoiding oversharing, and understanding the risks of location tagging and friend requests from strangers.
→Legal and ethical responsibilities: Knowing the basics of UK laws like the Computer Misuse Act and Data Protection Act, and understanding the consequences of cyberbullying, copyright infringement, and illegal downloads.

Learning Objectives

What you need to know and understand

Understand the risks that can exist when using the Internet., Know how to safeguard self and others when working online., Take precautions to maintain data security., Follow legal constraints, guidelines and procedures which apply when working online.

Assessment Criteria

Key criteria assessors look for in your portfolio

Award credit for demonstrating an understanding of common internet threats (e.g., viruses, identity theft) and their potential impact.
Award credit for outlining effective personal safety measures, such as using strong passwords, enabling two-factor authentication, and adjusting privacy settings.
Award credit for explaining the importance of data backup, secure connections (e.g., HTTPS), and cautious handling of personal data.
Award credit for identifying relevant legal considerations like the Data Protection Act, copyright, and acceptable use policies.

Assessment Guidance

Guidance for achieving higher grades

💡For practical tasks, always demonstrate both the identification of a risk and the specific step to mitigate it.
💡Use real-world examples to illustrate legal constraints, such as citing the consequences of copyright infringement.
💡When describing data security, prioritize the principle of 'least privilege' and encryption basics.
💡Revise the key terminology of the Data Protection Act (or GDPR) to accurately reference legal principles.
💡When answering questions about online threats, always use specific examples (e.g., 'a phishing email might claim to be from your bank asking for login details') rather than vague statements. This shows you understand real-world applications.
💡For questions on data protection, mention the key principles of the Data Protection Act 2018, such as keeping data secure, using it only for its intended purpose, and not keeping it longer than necessary. This demonstrates deeper knowledge.
💡In exam scenarios about social media, always consider both the risks and the responsibilities. For instance, explain how to adjust privacy settings but also emphasise the importance of respectful communication and reporting inappropriate content.

Common Mistakes

Common errors to avoid in your coursework

Confusing malware types (e.g., thinking a worm is the same as a trojan).
Assuming that using public Wi-Fi is always safe if a password is required.
Believing that once software is installed, it is permanently safe without updates.
Underestimating the importance of reading privacy policies and terms of service.
Misconception: 'If I use a private browsing mode (Incognito), I am completely anonymous online.' Correction: Private browsing only prevents your browser from storing history and cookies on your device; your internet service provider, employer, or websites you visit can still track your activity.
Misconception: 'Only weak passwords like 'password123' are risky; a strong password is enough to keep my accounts safe.' Correction: Even strong passwords can be compromised if you reuse them across multiple sites or fall for phishing. Two-factor authentication adds an extra layer of security.
Misconception: 'Cyberbullying only happens on social media, and it's not a big deal if it's just jokes.' Correction: Cyberbullying can occur via any digital channel (text, email, gaming) and can have serious emotional and legal consequences. It is never acceptable and should be reported.

Frequently Asked Questions

Common questions students ask about this topic

Before You Start

Prior knowledge that will help with this topic

•Basic computer literacy: Ability to use a web browser, send emails, and navigate common software interfaces.
•Understanding of passwords: Familiarity with creating and managing passwords for online accounts.
•Awareness of online communication: Experience with social media, messaging apps, or forums is helpful but not essential.

Key Terminology

Essential terms to know

Understand the risks that can exist when using the Internet., Know how to safeguard self and others when working online., Take precautions to maintain data security., Follow legal constraints, guidelines and procedures which apply when working online.

Ready to learn?

AI-powered learning tailored to this unit

Internet Safety for IT users

Assessment criteria

Topic Overview

Key Concepts

Learning Objectives

Assessment Criteria

Assessment Guidance

Common Mistakes

Frequently Asked Questions

Before You Start

Key Terminology

Ready to learn?

Related Topics in TRAINING QUALIFICATIONS UK LTD vocational Digital Skills & IT

Audio Software

Bespoke Software

Communication and Productivity

Communication using a digital device

Topic Synopsis

Key Concepts & Core Principles

Exam Tips & Revision Strategies

Common Misconceptions & Mistakes to Avoid

Examiner Marking Points

Internet Safety for IT users

Assessment criteria

Topic Overview

Key Concepts

Learning Objectives

Assessment Criteria

Assessment Guidance

Common Mistakes

Frequently Asked Questions

What is the difference between a virus and malware?

How can I tell if an email is a phishing attempt?

What should I do if I think my online account has been hacked?

Is it safe to use public Wi-Fi for online banking?

What is a digital footprint and why does it matter?

How do I report cyberbullying?

Before You Start

Key Terminology

Ready to learn?

Related Topics in TRAINING QUALIFICATIONS UK LTD vocational Digital Skills & IT

Audio Software

Bespoke Software

Communication and Productivity

Communication using a digital device