exit icon
Press enter to confirm search term

SOCIAL ENGINEERING

Services

SOCIAL ENGINEERING

Social engineering, in the context of information security, refers to psychological manipulation of people into performing actions or divulging confidential information.

Social engineering attacks happen in one or more steps. A perpetrator first investigates the intended victim to gather necessary background information, such as potential points of entry and weak security protocols, needed to proceed with the attack. Then, the attacker moves to gain the victim’s trust and provide stimuli for subsequent actions that break security practices, such as revealing sensitive information or granting access to critical resources.

Our Social Engineering Services

EMAIL PHISHING

Social engineering testing uses email phishing and spear phishing to target staff into visiting unknown websites, divulging sensitive information.We create threat campaigns that are specifically designed to target your staff. In doing so, we would gain valuable insight to discover security issues.

PHYSICAL SITE ASSESSMEMT

The most direct approach used by criminals is to walk into your premises and convince your staff that they should be there. Our team masquerade as vendors, new employees, business partners and more in order to entice staff into divulging sensitive information.

TELEPHONE VISHING

Over the phone, attackers convince the victim that they are genuine, so that they disclose information. Our Security Team uses telephone social engineering to target the employees into divulging sensitive information or otherwise getting them to perform an action they should not be.

OPEN SOURCE INTELLIGENCE

We perform OSINT engagements (Open-Source Intelligence). OSINT is used to get information and updates from outside source about a given organization and his employees. All the data are collected from publicly available sources to be used in an intelligence context.

Have a project you want to start? Click Here