What is pretexting?
Pretexting is a form of social engineering where an attacker creates a false scenario or identity to trick individuals into
revealing sensitive information or performing actions they normally wouldn’t. These attacks often involve impersonating
trusted figures such as IT staff, managers, or service providers. This module helps users understand how pretexting works and
how to respond safely to such situations.
Identifying Pretexting Attacks
Pretexting attacks rely heavily on trust and authority. Warning signs include individuals requesting confidential information
such as passwords, account details, or access credentials under the pretense of helping or resolving an issue. Attackers may
use convincing stories, claim urgency, or reference internal processes to appear legitimate. Unverified phone calls, emails,
or messages asking for sensitive information, especially when combined with pressure or authority, should raise suspicion.
Requests that bypass normal procedures or security protocols are also strong indicators of a pretexting attempt.
How to Respond to a Pretexting Attempt
If you suspect a pretexting attack, do not share any sensitive information or perform the requested action immediately. Instead,
verify the identity of the individual through official channels, such as contacting the organization directly using known
contact information. Report the incident to your IT or security team so it can be investigated. If any information was
accidentally shared, take immediate steps to secure your accounts and notify the appropriate support teams.
Avoid Pretexting Attacks
Avoiding pretexting attacks requires strict adherence to security policies and verification procedures. Always confirm the identity
of anyone requesting sensitive information, regardless of their claimed role or authority. Do not bypass established security
processes, even if the request seems urgent. Be cautious of unsolicited communications and requests that seem unusual or out of
context. Regular training and awareness help reinforce the importance of verification and reduce the risk of manipulation.
Pretexting attacks exploit trust and authority to gain access to sensitive information. By verifying identities, following
security procedures, and remaining cautious of unusual requests, users can effectively protect themselves against this type
of social engineering attack.