Social Engineering
The psychological manipulation of people into performing actions or divulging confidential information. Social engineering exploits human trust, curiosity, fear, and helpfulness rather than technical vulnerabilities.
Extended Explanation
Social engineering is the most successful attack vector because it targets the weakest link in security: human behavior. Attackers use psychological principles including authority, urgency, scarcity, social proof, and reciprocity to manipulate targets. Security awareness training that includes realistic simulations is the primary defense against social engineering attacks.
Related Terms
Baiting
social-engineeringA social engineering attack that uses a tempting offer or item to lure victims. This can involve leaving infected USB dr...
Phishing
phishingA cyberattack that uses fraudulent emails, text messages, or websites to trick people into revealing sensitive informati...
Pretexting
social-engineeringA social engineering technique where the attacker creates a fabricated scenario (pretext) to manipulate the victim into...
Tailgating
social-engineeringA physical security breach where an unauthorized person follows an authorized individual through a secured entrance with...