The biggest threat businesses are facing at the moment is social engineering. A social engineering penetration test can assess your employee’s readiness to deal with potential attacks.
We help companies test how well the employees of a business cope with social engineering attacks as well as train then to know what to look for.
What is social engineering?
Social engineering is where an attacker will attempt to trick an employee into giving up sensitive company or client information, transferring money allowing access to areas of buildings restricted to the public. These attacks can happen online, over the phone, via email or in person.
One of the most common forms of social engineering is phishing. Phishing attempts most often begin with an email attempting to obtain sensitive information through some user interaction, such as clicking on a malicious link or downloading an infected attachment.
Fake invoice scams happen when fraudsters send an invoice or bill to a company, requesting payment for goods or services.
This is usual sent from the managing director or CEO to the finance team using email spoofing so can seem very real.