The Art of Deception
Social engineering is the psychological manipulation of people into performing actions or divulging confidential information. It relies on trust and human error, not technical hacking.
The Goal
To trick you into providing sensitive data (passwords, financials), transferring money, or giving up access to private systems through tactics like phishing, pretexting, and baiting.
Red Flags
- An unusual sense of urgency or threat
- Requests for sensitive information via email
- An offer that seems too good to be true
- Strange sender email address or grammar
What To Do
Stop and think before you click or respond. Never give out personal data based on an unsolicited request. Verify the person's identity through a separate, trusted communication channel (like an official phone number).
The Digital Ghost
AI tools can now create convincing fake audio and video (deepfakes) of individuals from small samples. This technology is being used to make social engineering attacks far more personal and believable.
The Goal
To impersonate a trusted individual—like a boss, family member, or colleague—in a phone call or video to create a convincing, urgent scenario that pressures you into sending money or information.
Red Flags
- Unexpected and urgent requests for money
- Poor lip-syncing or strange video artifacts
- Unusual phrasing or robotic-sounding voice
- Pressure to act immediately without verification
What To Do
Establish a secondary verification method. If you get a suspicious call or video, hang up and call the person back on their known phone number. Agree on a "safe word" with family or colleagues for verifying sensitive requests.