{"id":7783,"date":"2021-11-10T16:30:03","date_gmt":"2021-11-10T16:30:03","guid":{"rendered":"https:\/\/cybersmart.com\/?p=7783"},"modified":"2022-01-20T17:58:04","modified_gmt":"2022-01-20T17:58:04","slug":"what-is-a-social-engineering-attack","status":"publish","type":"post","link":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/","title":{"rendered":"What is a social engineering attack?"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">We all know what a classic cyberattack looks like. It usually involves hackers with high levels of technical expertise and some form of a malicious tool like <\/span><a href=\"https:\/\/cybersmart.com\/blog\/what-is-ransomware\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">ransomware<\/span><\/a><span style=\"font-weight: 400;\"> or malware.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">However, cybercriminals don\u2019t always use the latest malware and cyberattacks don\u2019t have to be highly technologically advanced. There\u2019s a whole other class of threats that harness the most powerful weapon of all \u2013 our brains. <\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">These cyberattacks are known as social engineering attacks. But how do they work? And how can your business protect itself?\u00a0<\/span><\/p>\n<h3><b>What is social engineering?\u00a0<\/b><\/h3>\n<p><span style=\"font-weight: 400;\">The term social engineering covers a broad range of malicious activities. What ties them together is that they all use human interactions to achieve their sinister ends. Broadly speaking, all social engineering attacks use psychological manipulation to trick us into making security mistakes or giving away sensitive information.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For more on how cybercriminals do this, we highly recommend our blog on <\/span><a href=\"https:\/\/cybersmart.com\/blog\/how-does-the-internet-encourage-cybercrime\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">how the internet encourages cybercrime.<\/span><\/a><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<h3><b>What does a social engineering attack look like?\u00a0<\/b><\/h3>\n<p><span style=\"font-weight: 400;\">Now we know what a social engineering attack is, let\u2019s look at how they work in practice. Although there are potentially endless types of social engineering attacks, there are four general categories most fit under.\u00a0<\/span><\/p>\n<h4><b>1. Phishing\u00a0<\/b><\/h4>\n<p>You\u2019ve almost certainly heard of <a href=\"https:\/\/cybersmart.com\/blog\/dont-take-the-bait-tips-for-avoiding-a-phishing-attack\/\" target=\"_blank\" rel=\"noopener\">phishing attacks<\/a>. They\u2019re by far the most common form of social engineering, but that doesn\u2019t make them less dangerous.<\/p>\n<p><span style=\"font-weight: 400;\">Most phishing attacks seek to do three things:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Steal personal information such as names, addresses and banking details <\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Redirect victims to malicious websites that contain phishing landing pages or malware<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Use threats, fear or a sense of urgency to manipulate the victim into acting quickly\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">A lot of phishing attacks are poorly executed and easy to ignore. We\u2019ve all had emails claiming to be from a well-known brand, only to notice the web address or logo is subtly wrong. However, plenty of phishing attacks do succeed. <\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">For example, in May 2021 US fuel supplier <\/span><a href=\"https:\/\/www.bloomberg.com\/news\/articles\/2021-06-04\/hackers-breached-colonial-pipeline-using-compromised-password\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">Colonial Pipeline was subject to one of the largest ransomware attacks in history<\/span><\/a><span style=\"font-weight: 400;\">, triggering a fuel crisis in the process. It\u2019s believed the attack began with a simple email phishing scam that managed to extract an employee password.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">So, even though they might be limited and often badly done, it\u2019s unwise to underestimate the humble phishing scam.\u00a0<\/span><\/p>\n<h4><b>2. Piggybacking\u00a0<\/b><\/h4>\n<p><span style=\"font-weight: 400;\">Also known as \u2018tailgating\u2019, piggybacking involves exactly what it sounds like (although not quite literally). In this type of attack, someone without the proper authentication follows a company employee into a restricted area.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Here\u2019s an example of how it might work:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">The attacker waits outside the company\u2019s office, posing as a delivery driver or plumber.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">An employee enters using their keycard or other security accreditation.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">The attacker asks the employee to hold the door.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">They do, and suddenly the attacker has access to the building.<\/span><\/li>\n<\/ol>\n<p><span style=\"font-weight: 400;\">Once in, the attacker is one step closer to accessing confidential files, stealing company property, conducting corporate espionage, or physically attacking the business\u2019s systems. <\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">This might sound a bit \u2018low-budget spy thriller\u2019 but the danger is very real. And SMEs, who typically have fewer physical security checks in place, are particularly at risk.<\/span><\/p>\n<h4><b>3. Pretexting<\/b><\/h4>\n<p><span style=\"font-weight: 400;\">Of all the four threat types on this list, pretexting is the hardest to counter. Why? Because it relies on plausibility. A good pretexting attack will create a fabricated, but completely reasonable, scenario to try and steal information from victims.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">A pretexting attack usually works something like this. The scammer poses as a supplier and claims to need information from the target to confirm their identity. They then pilfer this data and use it to steal company property, enter business systems, or launch a secondary attack.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To give a real-world example, between 2013 and 2015 <\/span><a href=\"https:\/\/www.cnbc.com\/2019\/03\/27\/phishing-email-scam-stole-100-million-from-facebook-and-google.html\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">Facebook and Google were conned out of <\/span><\/a><span style=\"font-weight: 400;\">$100 million after falling for a fake invoice scam. A Lithuanian cybercriminal called Evaldas Rimasauskas realised both organisations used the infrastructure supplier Quanta Computer.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Sensing a vulnerability, he sent a series of fake multimillion-dollar invoices from Quanta Computer over two years. These invoices even included contracts and letters, apparently signed by the tech giants\u2019 staff.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The cybercriminal was eventually caught and Facebook and Google recovered some of the money. However, if two of the largest and most technologically advanced companies in the world can fall for such a simple scheme, so can anyone else.\u00a0<\/span><\/p>\n<h4><b>4. Quid pro quo<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><\/h4>\n<p><span style=\"font-weight: 400;\">Quid pro quo attacks promise a benefit in exchange for information. This benefit is usually some sort of service.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For example, an attacker may call random phone extensions at a company, pretending to be returning a call from a technical support enquiry. Once they find someone who really has a problem, they pretend to help them but use it as an opportunity to plant malware or access important company data.\u00a0<\/span><\/p>\n<h3><b>What can you do to protect your business?<\/b><\/h3>\n<h4><b>Education, education, education\u00a0<\/b><\/h4>\n<p>There\u2019s a well-worn statistic that<a href=\"https:\/\/www.cybintsolutions.com\/cyber-security-facts-stats\/\" target=\"_blank\" rel=\"noopener\"> 95% of cybersecurity breaches are down to human error<\/a>. But when it comes to social engineering attacks, that figure is much closer to 100%.<\/p>\n<p><span style=\"font-weight: 400;\">The best way to counter this is through <\/span><a href=\"https:\/\/cybersmart.com\/blog\/why-security-training-is-the-key-to-improving-your-cybersecurity\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">security training<\/span><\/a><span style=\"font-weight: 400;\">. Training can help your employees recognise the tactics cybercriminals typically use such as impersonating a supplier, creating a sense of urgency, or offering bogus services.\u00a0<\/span><\/p>\n<p>As we\u2019ve said before, where many social engineering attacks fail is attention to detail \u2013 there\u2019s usually something that isn\u2019t quite right. And you can train your people to recognise these tells. Some examples include spelling mistakes, subtly different URLs, unsolicited communications and suspicious email attachments.<\/p>\n<h4><b>Create clear cybersecurity policies<\/b><\/h4>\n<p><span style=\"font-weight: 400;\">If your people don\u2019t know which behaviours are harmful, they can\u2019t correct them. So, you need easy-to-follow cybersecurity policies to make it clear what behaviours are expected of them. On top of this, make sure everyone can find them. After all, there\u2019s little point in an important policy document that spends its life languishing in a corner of the shared company drive.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For more on why cybersecurity policies are so important and how CyberSmart can help, <\/span><a href=\"https:\/\/cybersmart.com\/blog\/what-is-a-cybersecurity-policy-and-why-do-you-need-one\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">read this<\/span><\/a><span style=\"font-weight: 400;\">.\u00a0<\/span><\/p>\n<h4><b>Foster a positive cybersecurity culture\u00a0<\/b><\/h4>\n<p><span style=\"font-weight: 400;\">If your business does fall foul of a social engineering attack, acting quickly could be the difference between a minor inconvenience and disaster. But for this to work, your employees need to feel comfortable asking for help, raising concerns or owning up to mistakes.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">All too often, security mistakes go unchecked and breaches become so much worse than they needed to be because staff are too afraid to report them.\u00a0<\/span><\/p>\n<h4><b>Check your cybersecurity measures<\/b><\/h4>\n<p><span style=\"font-weight: 400;\">Alongside training your staff, it\u2019s also worth checking (or implementing) your technological cybersecurity measures. These include <\/span><a href=\"https:\/\/cybersmart.com\/blog\/everything-you-need-to-know-about-firewalls\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">firewalls<\/span><\/a><span style=\"font-weight: 400;\">, <\/span><a href=\"https:\/\/cybersmart.com\/blog\/antivirus-and-anti-malware-explained\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">antivirus and anti-malware<\/span><\/a><span style=\"font-weight: 400;\">, <\/span><a href=\"https:\/\/cybersmart.com\/blog\/why-is-patching-important-to-cybersecurity\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">patching<\/span><\/a><span style=\"font-weight: 400;\"> and access management policies. <\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">By having these measures in place and regularly checking them, you should be able to limit the number of attacks that ever reach your staff.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Looking to improve your cybersecurity but not sure where to begin? Start by getting <\/span><a href=\"https:\/\/cybersmart.com\/solutions\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">certified in Cyber Essentials<\/span><\/a><span style=\"font-weight: 400;\">, the UK government scheme that covers all the fundamentals of cyber hygiene<\/span><span style=\"font-weight: 400;\">.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/cybersmart.com\/solutions\/\" target=\"_blank\" rel=\"noopener\"><img decoding=\"async\" class=\"aligncenter wp-image-6308 size-full\" src=\"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/08\/CTA-button-2.png\" alt=\"CTA button\" width=\"820\" height=\"312\" srcset=\"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/08\/CTA-button-2.png 820w, https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/08\/CTA-button-2-300x114.png 300w, https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/08\/CTA-button-2-768x292.png 768w\" sizes=\"(max-width: 820px) 100vw, 820px\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>We all know what a classic cyberattack looks like. It usually involves hackers with high levels of technical expertise and some form of a malicious tool like ransomware or malware.\u00a0&#8230;<\/p>\n","protected":false},"author":8,"featured_media":7873,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[4,11],"tags":[103,9,200,16,223,217],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What is a social engineering attack? - CyberSmart<\/title>\n<meta name=\"description\" content=\"What is social engineering attack? And how can SMEs protect themselves?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is a social engineering attack? - CyberSmart\" \/>\n<meta property=\"og:description\" content=\"What is social engineering attack? And how can SMEs protect themselves?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\" \/>\n<meta property=\"og:site_name\" content=\"CyberSmart\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/CyberSmartUK\/?ref=br_rs\" \/>\n<meta property=\"article:published_time\" content=\"2021-11-10T16:30:03+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-01-20T17:58:04+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"627\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Rob S\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberSmartUK\" \/>\n<meta name=\"twitter:site\" content=\"@CyberSmartUK\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rob S\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\"},\"author\":{\"name\":\"Rob S\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/594c076c19735505b2d038cab92930ff\"},\"headline\":\"What is a social engineering attack?\",\"datePublished\":\"2021-11-10T16:30:03+00:00\",\"dateModified\":\"2022-01-20T17:58:04+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\"},\"wordCount\":1165,\"publisher\":{\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png\",\"keywords\":[\"cyber attack\",\"Cyber Essentials\",\"Cyberpsychology\",\"SMEs\",\"Social engineering\",\"Training\"],\"articleSection\":[\"Blog\",\"Cyber Security 101\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\",\"url\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\",\"name\":\"What is a social engineering attack? - CyberSmart\",\"isPartOf\":{\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png\",\"datePublished\":\"2021-11-10T16:30:03+00:00\",\"dateModified\":\"2022-01-20T17:58:04+00:00\",\"description\":\"What is social engineering attack? And how can SMEs protect themselves?\",\"breadcrumb\":{\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage\",\"url\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png\",\"contentUrl\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png\",\"width\":1200,\"height\":627},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/cybersmart.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What is a social engineering attack?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#website\",\"url\":\"https:\/\/cybersmartcom.wpengine.com\/\",\"name\":\"CyberSmart\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/cybersmartcom.wpengine.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#organization\",\"name\":\"CyberSmart\",\"url\":\"https:\/\/cybersmartcom.wpengine.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/09\/cybersmart-aboutus-mobile.png\",\"contentUrl\":\"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/09\/cybersmart-aboutus-mobile.png\",\"width\":990,\"height\":1006,\"caption\":\"CyberSmart\"},\"image\":{\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/CyberSmartUK\/?ref=br_rs\",\"https:\/\/twitter.com\/CyberSmartUK\",\"https:\/\/www.instagram.com\/cybersmart.uk\/\",\"https:\/\/www.linkedin.com\/company\/be-cybersmart\",\"https:\/\/www.youtube.com\/channel\/UC620w4R_UG_P4ncd_9azlHg\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/594c076c19735505b2d038cab92930ff\",\"name\":\"Rob S\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/fcfa8d7cae21a4ce57da35527b5aed80?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/fcfa8d7cae21a4ce57da35527b5aed80?s=96&d=mm&r=g\",\"caption\":\"Rob S\"},\"url\":\"https:\/\/cybersmart.com\/author\/rob-s\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is a social engineering attack? - CyberSmart","description":"What is social engineering attack? And how can SMEs protect themselves?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/","og_locale":"en_US","og_type":"article","og_title":"What is a social engineering attack? - CyberSmart","og_description":"What is social engineering attack? And how can SMEs protect themselves?","og_url":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/","og_site_name":"CyberSmart","article_publisher":"https:\/\/www.facebook.com\/CyberSmartUK\/?ref=br_rs","article_published_time":"2021-11-10T16:30:03+00:00","article_modified_time":"2022-01-20T17:58:04+00:00","og_image":[{"width":1200,"height":627,"url":"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png","type":"image\/png"}],"author":"Rob S","twitter_card":"summary_large_image","twitter_creator":"@CyberSmartUK","twitter_site":"@CyberSmartUK","twitter_misc":{"Written by":"Rob S","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#article","isPartOf":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/"},"author":{"name":"Rob S","@id":"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/594c076c19735505b2d038cab92930ff"},"headline":"What is a social engineering attack?","datePublished":"2021-11-10T16:30:03+00:00","dateModified":"2022-01-20T17:58:04+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/"},"wordCount":1165,"publisher":{"@id":"https:\/\/cybersmartcom.wpengine.com\/#organization"},"image":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png","keywords":["cyber attack","Cyber Essentials","Cyberpsychology","SMEs","Social engineering","Training"],"articleSection":["Blog","Cyber Security 101"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/","url":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/","name":"What is a social engineering attack? - CyberSmart","isPartOf":{"@id":"https:\/\/cybersmartcom.wpengine.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage"},"image":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png","datePublished":"2021-11-10T16:30:03+00:00","dateModified":"2022-01-20T17:58:04+00:00","description":"What is social engineering attack? And how can SMEs protect themselves?","breadcrumb":{"@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#primaryimage","url":"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png","contentUrl":"https:\/\/cybersmart.com\/wp-content\/uploads\/2021\/12\/Retargeting_V.5-4.png","width":1200,"height":627},{"@type":"BreadcrumbList","@id":"https:\/\/cybersmart.com\/blog\/what-is-a-social-engineering-attack\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersmart.com\/"},{"@type":"ListItem","position":2,"name":"What is a social engineering attack?"}]},{"@type":"WebSite","@id":"https:\/\/cybersmartcom.wpengine.com\/#website","url":"https:\/\/cybersmartcom.wpengine.com\/","name":"CyberSmart","description":"","publisher":{"@id":"https:\/\/cybersmartcom.wpengine.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersmartcom.wpengine.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersmartcom.wpengine.com\/#organization","name":"CyberSmart","url":"https:\/\/cybersmartcom.wpengine.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/09\/cybersmart-aboutus-mobile.png","contentUrl":"https:\/\/cybersmart.com\/wp-content\/uploads\/2020\/09\/cybersmart-aboutus-mobile.png","width":990,"height":1006,"caption":"CyberSmart"},"image":{"@id":"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/CyberSmartUK\/?ref=br_rs","https:\/\/twitter.com\/CyberSmartUK","https:\/\/www.instagram.com\/cybersmart.uk\/","https:\/\/www.linkedin.com\/company\/be-cybersmart","https:\/\/www.youtube.com\/channel\/UC620w4R_UG_P4ncd_9azlHg"]},{"@type":"Person","@id":"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/594c076c19735505b2d038cab92930ff","name":"Rob S","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersmartcom.wpengine.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/fcfa8d7cae21a4ce57da35527b5aed80?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fcfa8d7cae21a4ce57da35527b5aed80?s=96&d=mm&r=g","caption":"Rob S"},"url":"https:\/\/cybersmart.com\/author\/rob-s\/"}]}},"_links":{"self":[{"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/posts\/7783"}],"collection":[{"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/comments?post=7783"}],"version-history":[{"count":0,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/posts\/7783\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/media\/7873"}],"wp:attachment":[{"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/media?parent=7783"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/categories?post=7783"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersmart.com\/wp-json\/wp\/v2\/tags?post=7783"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}