Security glossary
What is social engineering?
Social engineering is psychological manipulation used to make people share information or approve harmful actions.
Last reviewed: 2026-05-23
In plain English
Instead of breaking software, attackers exploit trust, urgency, and authority.
Breach context helps attackers sound legitimate: they can reference real services or personal details.
Social engineering appears in email, phone, text, chat, and fake support flows.
Real-world example
A caller claims to be security support and asks for your one-time code to 'verify your identity'.
What you should do
- Treat urgency and pressure as warning signs.
- Never share login codes with anyone claiming to be support.
- Verify requests through official in-product channels.
Related terms
What is phishing?
Phishing is when attackers pretend to be trusted brands or people to trick you into giving passwords, codes, or payment details.
What is spear phishing?
Spear phishing is targeted phishing aimed at a specific person, team, or role using tailored details.
What are impersonation scams?
Impersonation scams happen when attackers pretend to be a trusted person, company, or support team to gain access or money.