Types of Social Engineering Attacks
Types of Social Engineering Attacks
Social engineering manifests in numerous forms, each exploiting different vulnerabilities:
Human-Based Attacks:
- Impersonation: Pretending to be someone else to gain trust
- Tailgating: Following authorized personnel into restricted areas
- Dumpster Diving: Searching trash for sensitive information
- Shoulder Surfing: Observing users entering sensitive information
- Reverse Social Engineering: Making victims come to the attacker for help
Computer-Based Attacks:
- Phishing: Fraudulent emails requesting sensitive information
- Baiting: Leaving infected media for victims to find
- Scareware: Fake warnings prompting software installation
- Watering Hole: Compromising websites frequented by targets
- Pretexting: Creating fabricated scenarios to obtain information