Social Engineering is a technique used to obtain or attempt to obtain secure information by tricking an individual into revealing the information. Social engineering is normally quite successful, because most targets (or victims) want to trust people and provide as much help as possible. Victims of social engineering typically have no idea they have been conned out of useful information or have been tricked into performing a particular task. The easiest way to breach security is to obtain credentials and the easiest way to get that information is to ask someone for it. The basic goal of social engineering is to gain unauthorized access to systems or information in order to commit fraud, network intrusion, industrial espionage, identity theft, or simply to disrupt and compromise computer systems.
- Social Engineering by Phone – Pretexting
- Dumpster Diving
- On-line Social Engineering – Phishing, Vishing, SMiShing, Charming
- Reverse Social Engineering
- Shoulder Surfing – Looking over a shoulder to see what they are typing.
- And many more...
What you should do
- NEVER share your user name or password with anyone.
- National Bank of Commerce will NEVER call for your user name or password.
- Report spam/fraud to email@example.com.
- ALWAYS be aware of your surroundings.