Social engineering is a type of psychological manipulation in which an attacker uses various tactics to manipulate individuals into divulging sensitive information or performing actions that could compromise their security. Some examples of social engineering tactics include:
- Phishing: This involves sending fake emails that appear to be from legitimate sources, with the goal of tricking the recipient into divulging sensitive information or clicking on a malicious link.
- Baiting: This involves offering something appealing to the victim in order to trick them into divulging sensitive information or performing a desired action.
- Scareware: This involves presenting the victim with a fake warning or alert that instills fear in them, with the goal of tricking them into divulging sensitive information or installing malicious software.
- Pretexting: This involves creating a fake identity or pretext in order to trick the victim into divulging sensitive information.
- Impersonation: This involves pretending to be someone else in order to gain access to sensitive information or systems.
- Quid pro quo: This involves offering something in exchange for sensitive information or access to systems.
- Influence: This involves manipulating the victim through psychological means, such as by using authority, scarcity, or likability.