What are common social engineering techniques?

Common techniques include phishing (email-based deception), pretexting (creating a fabricated scenario), baiting (offering something enticing), tailgating (following authorized personnel into secure areas), quid pro quo (offering a service in exchange for information), and watering hole attacks (compromising websites frequented by targets).

Back to Glossary

Threats & Attacks

What Is Social Engineering?

Definition

Social engineering is a manipulation technique that exploits human psychology to trick people into making security mistakes or giving away sensitive information. It is the human element of cybersecurity attacks and often serves as the initial vector for more complex attacks.

Frequently Asked Questions

Related Terms

Phishing

Phishing is a social engineering attack where cybercriminals send fraudulent communications, typically emails, that appear to come from a trusted source. The goal is to trick recipients into revealing sensitive information, clicking malicious links, or downloading malware.

Red Team

A red team is a group of security professionals who simulate real-world attacks against an organization to test its defenses. Unlike penetration testing, red team exercises assess the entire security posture including people, processes, and technology across an extended engagement.

Related Services

Security Awareness Training

Train your team to recognize and resist social engineering attacks.

Need Help With Social Engineering?

Our certified security professionals can help you implement the right social engineering strategy for your organization. Get a free assessment today.

Book a Free Consultation

Browse All Glossary Terms

⚡ 24/7 SOC Monitoring Available

Talk to an ExpertBook Now

Solutions

OVERVIEW

BY BUSINESS NEED

BY INDUSTRY

2024 Cybersecurity Priorities Report