Advanced Social Engineering
Social Engineering is a concept closely related to the discipline of human intelligence (HUMINT) and elicitation, referring to the ability to obtain information from human sources. In the context of cyber security, it refers to a complex fraud scheme that an attacker uses to gain unauthorized access to data or networks via an unknowingly human target that is tricked into facilitating such access. Section performs social engineering attacks to identify and mitigate security weaknesses.
Do I Need a Social Engineering Test?
If you want test whether your current security setup, including cyber security and physical security, can withstand advanced social engineering attacks performed in realspace, then an advanced social engineering test is the right choice for your company.
Most clients choose the advanced social engineering tests as an add-on to phishing tests performed in cyberspace, which works on the same premise as social engineering attacks performed in realspace.
A company may have recently changed their security protocols or have doubts about whether their existing protocols and policies are working or not, which is a good premise for having an advanced social engineering attack conducted that are designed to evaluate exactly this.
Section tailors social engineering attacks to your company's requirements. Each attack performed are more or less unique, as companies have very different security setups. We always consult our clients beforehand and agree to the full scope of the social engineering test, prior to conducting the attack scenarios, so the client knows exactly what will take place.