Basically, it’s when an attacker uses their people skills to get info on a company or its computer systems. Attackers might pretend to be a new employee, repairman, or researcher – they might even dish out fake credentials to back up their story. By asking a few questions, they can collect info that gives them access to the target’s network. If one source isn’t enough, they can approach another person and use the info they got from the first source to make their story sound more credible.
06.04.23
