Social Engineering

Social engineering involves different methods to manipulate people to disclose confidential information. It is difficult to protect oneself against social engineering as attacks are often highly technically advanced. A spam filter is not a guarantee that you will remain secure. The best protection against these attacks is user resilience through continuous simulations, education, and awareness information.

Social engineering

Types of Social Engineering Attacks


Ransomware attacks are the greatest cyber threats of our time. These attacks often start with an email, tricking users to install dangerous code (virus). The ransomware starts to spread in the network, infecting unit after unit, from computers to servers. The content of the units is encrypted and often ransom is demanded to decrypt the units. 


Phishing-attacks often target users to disclose sensitive information, such as banking information, credit card information, business secrets, email logging information, or information for other sensitive systems. By getting hold of credentials, criminals can gain access to more email accounts to perform attacks with.

Spear phishing

The openness of the internet allows for increasingly more advanced spear-phishing attacks to be executed. Criminals can manually or with the help of programs, easily find out, for example, who the CEO or CFO of your organization is. By fronting as a known person, different methods can be used to get a hold of sensitive information or get a person to perform detrimental acts.

Personal data

Social engineering can be used to make users leak personal data, in breach of GDPR. This often occurs through so-called spear phishing, for example, it could be when a criminal poses as the CEO asking for a list of all the employees.

Business secrets

Social engineering is also used to get a hold of business secrets. This is often done through spear phishing. For example, a criminal posing as the CEO, asking the CFO for the latest yearly report. For a listed company this kind of leakage of non-public economical information can have catastrophic consequences.

Phishing & Awareness Training

Build your human firewall

Over 90 % of data breaches start with a malicious email. Do you know how your users will respond to the next attack? Increase resilience against social engineering through simulated email attacks, like phishing, spear phishing, and ransomware - together with tailored awareness training.