Pretexting
A form of social engineering where attackers create elaborate, believable scenarios to justify requests for your private information.
Pretexting is a specific and highly effective form of social engineering where an attacker creates a believable, elaborate "pretext" or fabricated scenario to justify why they need your private information. For example, they might call or email you claiming to be from your IT department, stating there's an "urgent security issue" that requires you to "verify" your login credentials immediately. Or they might pose as an outside auditor needing access to certain files for compliance. The key to pretexting is the story; it's designed to shut down your critical thinking by providing a seemingly logical, authoritative reason for the request. By creating a professional, urgent scenario, they gain your trust and compliance without having to use a single piece of malware. Since these attacks prey on human trust, you need a security solution that automatically flags and quarantines suspicious communications, especially those that include unexpected requests for sensitive information.