• Security Tips

Pretexting

Social Engineering Scams Image

Pretexting is when the bad guys create a false scenario using a made-up identity or pose as someone you know. They can even pose as employees of bank or credit card companies to manipulate you into divulging personal or sensitive information.

How it Works: Common Tactics of Influence

The bad guys will try to persuade you into giving them sensitive information. Oftentimes, the information that they need is not specific to your organization. Below are examples of two common tactics used to influence victims in pretexting scenarios:

  • Pretexting with Authority
    You receive a call at work from someone demanding immediate assistance. They are speaking in an aggressive and authoritative tone. This person establishes their authority by using an executive-level or official-sounding job title. They may even insult you for not being familiar with “who they are”. These scare tactics often persuade victims into giving away sensitive information or complying with the cybercriminal’s request. It’s human nature to act in a responsive manner around someone of authority, but don’t fall victim to false claims of authority! 
     
  • Pretexting with Obligation
    You receive a call from someone posing as a member of your IT department. The bad guy tells you they’ve found malicious activity on your work computer and begin questioning your recent browsing history. The fake IT employee implies that you’ve accessed a malicious website and have put the company in danger as a result. They demand you update your password with a more “secure” password which they provide. Would you feel obligated to comply with their instructions? Many unsuspecting people would, but don’t fall victim to a false sense of obligation!

How Can I Avoid Falling Victim to Pretexting Scenarios?

Use the tips below to help protect your organization against pretexting scenarios:

  • Never give out sensitive information over the phone, online, or in email, unless you are absolutely sure you know who you’re dealing with, or you initiated contact with the individual.
  • If the caller claims to be an employee but their request seems suspicious, verify their identity through a trusted party and let them know you’ll call them back. If the caller questions the need for your verification efforts, explain that you’re following the process required for sharing the type of information they are requesting. Maintain a respectful but forceful attitude.

Make sure you’re familiar with your organization’s protocols for handling requests for information or ask your supervisor if you need assistance.



Knowbe4 Logo

Stop, Look, and Think. Don’t be fooled.

Like This Post?

Facebook
X
LinkedIn
Email

More Posts

Fake Permitting Scam Image
The Latest Scams

Scammers Are Targeting Home Projects—Here’s What to Watch

If you’re building, renovating, or improving your home, there’s a new scam you need to watch for—and it’s catching people at exactly the wrong time. How the Scam Works You receive an email that appears to come from a local government office—maybe your city, county, or permitting department. The message claims there’s an issue with your project and that you

March 30, 2026
Hand Remote Control Image
Fiber

Stop the Buffer: How to Get the Most from Your Streaming Experience

There’s nothing more frustrating than getting to the final seconds of a close game—only to see the spinning buffering wheel right before the winning shot. While buffering is often blamed on slow internet, that’s not always the case—especially if you’re already connected to Citynet Fiber. Your streaming device, settings, and even your home network setup can all impact performance. Here’s

March 27, 2026
Photography Tips Image
Technology

Phone Photography Tips: Take Better Photos This Spring

Capture Spring Like a Pro — With Just Your Phone Spring is one of the most photogenic times of year—blooming flowers, longer golden-hour light, and weekends filled with moments worth remembering. The best part?You don’t need a $3,000 camera or professional training to capture it all. The phone in your pocket is more powerful than most people realize. With just

March 27, 2026
Cybersecurity Hacker Hoodie Image
Cybersecurity

How Long Attackers Stay in a Network Before They’re Discovered

When people imagine a cyberattack, they often picture a dramatic event — systems suddenly shutting down or files becoming encrypted. But many cyber incidents don’t unfold that way. In many cases, attackers quietly gain access to a network and remain there for weeks or even months before being discovered. This period is known as “dwell time.” During this time, attackers

March 25, 2026
Cybersecurity Alert Critical Image
Cybersecurity

5 Critical Mistakes to Avoid During a Cyberattack

Think your business may already be compromised? See the warning signs and response steps here Even well-intentioned actions can make a cyber incident worse Cyberattacks often unfold quickly, and the wrong response in the first few minutes can make an incident far more difficult to contain and investigate. When a cyber incident occurs, the natural reaction is to act quickly

March 25, 2026
Man Laptop Cybersecurity
Cybersecurity

How Most Cyberattacks Actually Start

It’s usually not a sophisticated hack — it’s a moment of trust. Many organizations imagine cyberattacks as highly technical breaches targeting servers or networks. In reality, most cyber incidents begin with something much simpler – a human mistake or a moment of misplaced trust. Cybercriminals increasingly focus on manipulating employees rather than breaking through technical defenses. Here are some of

March 25, 2026
View All Posts

SuperPod with WiFi 6E

Plume SuperPod WiFi 6E Specs

SuperPod with WiFi 6

Plume SuperPod WiFi 6 Specs

SuperPod

Plume SuperPod Secs