What is social engineering?

Social engineering is a cyber security concept. It is the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes.

Social engineering attacks happen in one or more steps. A perpetrator first investigates the intended victim to gather necessary background information, such as potential points of entry and weak security protocols, needed to proceed with the attack.

Then, the attacker moves to gain the victim’s trust and provide stimuli for subsequent actions that break security practices, such as revealing sensitive information or granting access to critical resources.

Social engineers manipulate human feelings, such as curiosity or fear, to carry out schemes and draw victims into their traps.

Therefore, be wary whenever you feel alarmed by an email, attracted to an offer displayed on a website.

Each day more and more people fall for baity emails that say “Congratulations! You have won X dollars”. Majority of the new internet users still get caught in such traps.

As informed internet citizens it is our duty to educate others including our parents about such things. Ensure you get your parents to read this blog by sending them website link or whatever way you deem fit but please ensure they know about social engineering.

Being aware yourself is not enough, making others aware is equally important.

-ChoubeySahab