GLOSSARY / Social Engineering
What is Social Engineering?
Manipulating people into breaking security procedures or revealing confidential information.
Rather than attacking technology, social engineering exploits human psychology — urgency, authority, fear, or helpfulness. Phishing, pretexting, baiting, and tailgating are all forms of it.
It is effective because it bypasses technical controls entirely.
How to defend
Security-awareness training, verification procedures for sensitive requests, and a no-blame reporting culture.
Related free tools
Related terms
Part of the Ciphers Security glossary. Free reference for analysts, defenders & learners.