Glossary
What is social engineering?
Social engineering is the art of manipulating people into giving up confidential information or taking actions that compromise security. Instead of hacking systems, attackers hack human trust — using persuasion, urgency, authority and fear to get what they want.
Common social engineering tactics
Phishing is the most common form, but social engineering also includes pretexting (inventing a believable scenario), baiting (offering something tempting), tailgating (following someone into a secure area) and impersonating IT or executives.
What they share is psychology: attackers exploit our instinct to trust, to help, and to obey authority — especially under time pressure.
Why it works
Technology can be patched; people can't. A confident caller claiming to be from IT, or an urgent email from the “CEO”, can bypass expensive defenses simply by convincing one person to act.
How to prevent social engineering
- Slow down — urgency and authority are the biggest red flags.
- Verify identities and requests through a known, separate channel.
- Never share passwords or codes, even with “IT” or “support”.
- Build a culture where questioning and reporting is encouraged, not punished.
How HookPhish helps
HookPhish security awareness training teaches people to recognize social engineering across email, phone and in person, and simulations give them safe practice spotting it.
Frequently asked questions
Is phishing a type of social engineering?+
Yes. Phishing is the most common form of social engineering, carried out over email, SMS, voice or QR codes.
How can I protect my team from social engineering?+
Combine awareness training and realistic simulations with simple verification habits and a no-blame reporting culture.
What is pretexting?+
Pretexting is inventing a believable scenario — like posing as IT or a supplier — to trick someone into sharing information or access.
Security training designed for people. Built for enterprise.
Learn how HookPhish can effortlessly transform your security program and reduce your human cyber-risk.
Fill out the form to schedule a 30-minute chat with a product expert. We'll discuss the challenges you want to solve, walk through HookPhish, and answer any questions.
Book a personalized demo
Looking to become a partner? Use this form instead.