Your IP: Unknown · Your Status: ProtectedUnprotectedUnknown
home
Pretexting

Pretexting

(also pretexting attack)

Pretexting definition

A social engineering attack where the victim is tricked by a fake scenario (a pretext) to perform an action or reveal personal information. To get victims to lower their guard, attackers often impersonate people the former naturally trusts, like coworkers or officials.

Real pretexting examples

2018: hackers impersonated Cabarrus County (US) suppliers and tricked officials into making payments to a fake bank account, stealing around 1.7 million dollars.

2020: a cybercriminal impersonated Barbara Corcoran’s assistant and through email tricked her into losing nearly 400,000 dollars.

Stopping a pretexting attack

  • Always be on the lookout for suspicious activity
  • Never reveal personal details without first verifying the organization
  • Question the caller — if they try to pressure you, end the call
  • Never call back with the same number — get one from a reputable source
  • Check emails for odd signs, like wrong words or symbols in the email address

Further reading

12 types of social engineering attacks
What is a pretexting attack and how to prevent it

Ultimate digital security

We value your privacy

This website uses cookies to provide you with a safer and more personalized experience. By accepting, you agree to the use of cookies for ads and analytics, in line with our Cookie Policy.