{"id":8655,"date":"2022-12-09T12:06:31","date_gmt":"2022-12-09T06:36:31","guid":{"rendered":"https:\/\/threatcop.com\/blog\/?p=8655"},"modified":"2025-06-12T18:12:20","modified_gmt":"2025-06-12T12:42:20","slug":"pretexting","status":"publish","type":"post","link":"https:\/\/threatcop.com\/blog\/pretexting\/","title":{"rendered":"What is Pretexting in Cybersecurity? Techniques, Risks and Prevention"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting is a cybercrime tactic where attackers will create a believable story or backstory that&#8217;ll trick someone into providing sensitive information, transferring funds or giving permission in some other way. Note that pretexting is not fear tactics or threats; it is based on trust. The attacker will likely pretend to be someone already familiar to the target (another employee, bank official, IT technician, etc.) and use this trick to manipulate their target.<\/span><\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #414141;color:#414141\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #414141;color:#414141\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#What_Is_Pretexting_in_Cybersecurity\" >What Is Pretexting in Cybersecurity?&nbsp;<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#10_Common_Pretexting_Techniques_With_Example_and_Case_Study\" >10 Common Pretexting Techniques (With Example and Case Study)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#Industry-Specific_Pretexting_Examples\" >Industry-Specific Pretexting Examples<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#Legal_Context_of_Pretexting\" >Legal Context of Pretexting<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#Risks_Consequences_of_Pretexting_Attacks\" >Risks &amp; Consequences of Pretexting Attacks<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#Pretexting_vs_Phishing_Know_the_Difference\" >Pretexting vs. Phishing: Know the Difference<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#How_to_Prevent_Pretexting_Attacks\" >How to Prevent Pretexting Attacks<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#Conclusion\" >Conclusion<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/#FAQs_Pretexting_Attack\" >FAQs: Pretexting Attack<\/a><\/li><\/ul><\/nav><\/div>\n\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_Is_Pretexting_in_Cybersecurity\"><\/span><span style=\"color: #000000;\"><b>What Is Pretexting in Cybersecurity?&nbsp;<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting scam is a <a href=\"https:\/\/threatcop.com\/blog\/types-of-social-engineering-attacks\/\"><strong>type of social engineering<\/strong><\/a> in which a scammer creates a fake but convincing identity or scenario to fool people into providing information, money or access.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Attackers use pretexting scam to:<\/b><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Stealing passwords<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Redirecting payroll or vendor payments<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Obtaining private records or access to the system or records<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Physically gaining access to a secure space<\/span><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"10_Common_Pretexting_Techniques_With_Example_and_Case_Study\"><\/span><span style=\"color: #000000;\"><b>10 Common Pretexting Techniques (With Example and Case Study)<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>1. Impersonation<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In this scheme, the attacker poses as a trusted person (for example, an executive, co-worker, or vendor) to obtain access, information, or money from the victim by deception. Impersonators frequently rely on realistic emails, calls, or in-person interactions to trick victims, typically relying on information from public records data in order to claim they are a trustworthy person.<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">An attacker pretends to be the CEO and sends an urgent email asking for a confidential wire to be sent.&nbsp;<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study: <\/b><span style=\"font-weight: 400;\">Ubiquiti Networks suffered a $46.7 million loss in a <a href=\"https:\/\/threatcop.com\/blog\/business-email-compromise\/\">business email compromise<\/a> (BEC) scam when attackers impersonated executives.&nbsp;<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>2. Tailgating&nbsp;<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Tailgating is a physical security incident where an unauthorized individual follows the authorized individual into an area they are not legally allowed to access. This leverages people&#8217;s politeness and reluctance to interfere with someone walking behind them. In many situations, the attacker may carry props that allow them to look less suspicious, such as a box of equipment or coffee.&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example:<\/b><span style=\"font-weight: 400;\"> The attacker stands by a secure office entrance and follows an employee through when they are entering.&nbsp;<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study:<\/b><span style=\"font-weight: 400;\"> An intruder gained access to a healthcare facility through a security breach by tailgating staff into a secure room that contained a server. The intruder then installed his rogue device, possibly for compromise in later stages.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<!DOCTYPE html>\r\n<html lang=\"en\">\r\n\r\n<head>\r\n    <meta charset=\"UTF-8\">\r\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\r\n    <title>Document<\/title>\r\n<\/head>\r\n\r\n<style>\r\n    .interestedBtn {\r\n        width: 80% !important;\r\n        box-sizing: border-box !important;\r\n        display: inline-block !important;\r\n        padding: 11px !important;\r\n        border: 1px !important;\r\n        border-color: #ddd !important;\r\n        margin-top: 10px !important;\r\n        background-color: #183e8b !important;\r\n        background-image: none !important;\r\n        text-shadow: none !important;\r\n        color: #fff !important;\r\n        font-size: 14px !important;\r\n        line-height: 20px !important;\r\n        border-radius: 5px !important;\r\n        margin: 0 !important;\r\n        cursor: pointer !important;\r\n        box-shadow: 0px 4.66px 22.99px 0px rgba(0, 0, 0, 0.10);;\r\n    }\r\n\r\n\r\n        .formSec .formSecTwo{\r\n            padding-top: 15px !important;\r\n            margin-bottom: 30px !important;\r\n        }\r\n\r\n\r\n    .tnp-email {\r\n        width: 80% !important;\r\n        box-sizing: border-box;\r\n        padding: 8px 10px;\r\n        display: inline-block;\r\n        border: 1px solid #ced4da;\r\n        background: #fff;\r\n        color: #000 !important;\r\n        font-size: 13px;\r\n        line-height: 20px;\r\n        border-radius: 2px;\r\n        padding-right: 30px;\r\n        margin-bottom: 0px;\r\n    }\r\n\r\n    .formSec {\r\n        border: 1px solid #ced4da;\r\n        float: left !important;\r\n        width: 55% !important;\r\n    }\r\n\r\n    .mainBox {\r\n       \/* border: 1px solid #183e8b;*\/\r\n         background: white;\r\n        max-width: 600px !important;\r\n        margin: 0 auto !important;\r\n        padding: 20px !important;\r\n        font-family: Arial, Helvetica, sans-serif !important;\r\n    }\r\n\r\n    .boxDiv {\r\n        display: flex !important;\r\n    }\r\n\r\n    .boxConsult {\r\n        float: left !important;\r\n        width: 45% !important;\r\n        padding: 10px !important;\r\n    }\r\n\r\n    .formSecTwo {\r\n        text-align:center !important;\r\n        width: 100% !important;\r\n    }\r\n\r\n    .formHeading {\r\n        font-family: Arial, Helvetica, sans-serif;\r\n        margin-top: 0px;\r\n        font-weight: 700;\r\n        line-height: 25px;\r\n        font-size: 18px !important;\r\n        \r\n       margin-bottom: 60px !important;\r\n       color: #000!important;\r\n          margin-top: 5px !important;\r\n    }\r\n\r\n    .fieldHeading {\r\n        margin: 0 !important;\r\n        font-size: 13px !important;\r\n        text-align: left !important;\r\n        margin: 0px 39px 2px 93px !important;\r\n        font-weight: 500 !important;\r\n    }\r\n\r\n    .image {\r\n        max-width:90% !important;\r\n        height: auto !important;\r\n    }\r\n\r\n     .email-icon {\r\n            position: absolute;\r\n            right: 50px;\r\n             top: 20px;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \r\n        }\r\n\r\n          .email-container{\r\n             position: relative;\r\n         \r\n        }\r\n       \r\n\r\n        .email-icon img{\r\n                 width: 15px;\r\n        }\r\n\r\n\r\n         input::placeholder {\r\n            color:#495057;\r\n        }\r\n\r\n\r\n     ::placeholder {\r\n        color: #495057;\r\n    }\r\n\r\n        ::-ms-input-placeholder { \r\n          color:#495057;\r\n        }\r\n\r\n\r\n        input:-webkit-autofill {\r\n            background-color: transparent !important;\r\n            -webkit-box-shadow: 0 0 0px 1000px white inset !important; \r\n            box-shadow: 0 0 0px 1000px white inset !important;\r\n            color: #495057 !important; \r\n        }\r\n\r\n        \r\n        input {\r\n            color:#495057 !important;\r\n        }\r\n\r\n\r\n    @media screen and (max-width: 480px) {\r\n        .boxDiv {\r\n            display: block !important;\r\n            padding: 15px !important;\r\n         \r\n        }\r\n\r\n        .image{\r\n        width: 80% !important;\r\n         margin-bottom: 14px;\r\n        }\r\n        .fieldHeading {\r\n            text-align: left !important;\r\n            margin: unset !important;\r\n        }\r\n\r\n        .boxConsult {\r\n            width: unset !important;\r\n            float: none !important;\r\n        }\r\n\r\n        .mainBox {\r\n            border: unset !important;\r\n        }\r\n\r\n        .formSec {\r\n            float: unset !important;\r\n            width: 100% !important;\r\n        }\r\n\r\n        .formSecTwo {\r\n            text-align: center !important;\r\n        }\r\n\r\n        .tnp-email {\r\n            width: 90% !important;\r\n        }\r\n\r\n        .formHeading {\r\n            margin-bottom: unset !important;\r\n        }\r\n\r\n         .email-icon {\r\n            position: absolute;\r\n            right: 25px;\r\n            top: 58%;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \/* Make sure the icon doesn't block clicking on the input *\/\r\n        }\r\n       \r\n        .email-container{\r\n             position: relative;\r\n        }\r\n\r\n    }\r\n<\/style>\r\n\r\n<body>\r\n\r\n    <div class=\"mainBox\" box-sizing:=\"\" border-box;=\"\">\r\n\r\n        <div class=\"boxDiv\">\r\n\r\n            <div class=\"boxConsult\">\r\n                <div>\r\n                    <h3 class=\"formHeading\" style=\" font-size: 16px !important;\">\r\n                        Book a Free Demo Call with Our People Security Expert<\/h3>\r\n                <\/div>\r\n                <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/form.svg\" class=\"image\">\r\n            <\/div>\r\n\r\n            <div class=\"formSec\">\r\n                <div class=\" formSecTwo\">\r\n                    <h4 style=\"margin-top: 0; font-size: 16px !important;\">Enter your details<\/h4>\r\n                    <div class=\"tnp tnp-subscription-minimal\">\r\n                        <form action=\"https:\/\/threatcop.com\/thankyou-blog\" method=\"get\" target=\"_blank\">\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n\r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"FullName\" value=\"\"\r\n                                    placeholder=\"Full Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon01.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"email\" required=\"\" name=\"email\" value=\"\"\r\n                                    placeholder=\"Corporate Email Id\">\r\n                                     <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon02.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"CompanyName\" value=\"\"\r\n                                    placeholder=\"Company Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon03.svg\" class=\"img-fluid\" \/><\/span>\r\n\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"number\" required=\"\" name=\"Phone\" value=\"\"\r\n                                    placeholder=\"Phone No.\"><br>\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon04.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n                            <input type=\"hidden\" name=\"BlogForm\" value=\"BlogForm\"><br>\r\n                            <input class=\"tnp-submit interestedBtn\" name=\"submit\" type=\"submit\"\r\n                                value=\"SUBMIT\">\r\n\r\n                        <\/form>\r\n                    <\/div>\r\n                <\/div>\r\n            <\/div>\r\n\r\n        <\/div>\r\n    <\/div>\r\n\r\n<\/body>\r\n\r\n<\/html>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>3. Piggybacking&nbsp;&nbsp;<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Similar to tailgating but with one, crucial difference, piggybacking is a request for permission. The attacker may claim they left their access badge at home and they are asking for assistance in getting access. They rely on an employee\u2019s helpfulness to bypass security and access vulnerabilities.&nbsp;&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example:<\/b><span style=\"font-weight: 400;\"> \u201cHey, sorry I forgot my badge \u2014 can you hold this door for me?\u201d&nbsp;&nbsp;<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study: <\/b><span style=\"font-weight: 400;\">A tech firm experienced internal leaks of data after an attacker piggybacked into an R&amp;D department.&nbsp;&nbsp;<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>4. Baiting<\/b><span style=\"font-weight: 400;\">&nbsp;&nbsp;<\/span><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/blog\/baiting-attacks\/\">Baiting<\/a> is the act of providing an enticing experience, like a free USB drive, job opportunity or media download, which lures the person into compromising their system. The \u2018bait\u2019 is usually crafted with malware or spyware that gets installed once opened or connected.&nbsp;&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example:<\/b><span style=\"font-weight: 400;\"> USB drives labelled \u201cConfidential \u2013 Salaries 2024\u201d are placed around the office parking lot.&nbsp;&nbsp;<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study:<\/b><span style=\"font-weight: 400;\"> Employees plugged in rogue USB devices they found in the lobby at an energy company, which got infected with malware.&nbsp;&nbsp;<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>5. Phishing with Pretexting&nbsp;&nbsp;<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This method is phishing and if believable enough, a pretext. When someone sees a phishing email, they are given a disaster of an email and have no idea where it came from. Pretexting establishes a scenario that builds trust; the common approach is to send the malicious link or attachment to take on the role of a vendor or invoke the legal authority of a company.&nbsp;&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">An attacker emails an employee pretending to be a vendor; the attacker sends an \u201cupdated invoice\u201d with malware.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study: <\/b><span style=\"font-weight: 400;\">MacEwan University was scammed out of $9 million because attackers posed as a vendor and requested staff to direct payments to a different account.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>6. Vishing (Voice Phishing)<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/vishing-awareness-and-simulation\">Vishing<\/a> is another type of phishing that uses voice phone calls, pretending to be someone they trust to manipulate a person into revealing their personal information (e.g., login information). Attackers can also spoof caller ID, use features of urgency, authority, or technical details to influence a target&#8217;s decision making.<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">The call may say you are from tech support and you request their system password.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study:<\/b><span style=\"font-weight: 400;\"> During a vishing event in 2022, remote workers at a U.S. company provided their VPN credentials which led to a company system compromise.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>7. Smishing (SMS Phishing)<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/smishing-awareness-and-simulation\">Smishing<\/a> is a scam when an attacker utilizes SMS (text messages) to trick individuals into clicking links that will provide malicious payloads or to request sensitive, personal, or account information. These SMS are sent, posing as a known institution, such as, for example, a bank,&nbsp; postal delivery service, government agency, etc, and are usually worded to create urgency for a response or action.<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example,<\/b><span style=\"font-weight: 400;\"> &#8220;Your package delivery has not completed. Click here to schedule a new delivery&#8221;.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case study:<\/b><span style=\"font-weight: 400;\"> There was a jump in smishing attacks against customers waiting on deliveries during the COVID-19 pandemic which after some time resulted in thousands of credentials stolen.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>8. Scareware<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Scareware produces fake warnings &#8211; normally popups or banners &#8211; that suggest your machine is infected. These warnings are meant to scare you into installing fake antivirus software that could be malware itself.<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">A pop-up says, \u201cYour computer is infected! Download this antivirus now.&#8221;<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study:<\/b><span style=\"font-weight: 400;\"> The staff at a regional hospital downloaded scareware, then the scareware locked up their systems with ransomware.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>9. Fake Surveys or Job Offers<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Cybercriminals create fake job postings, surveys, or HR documents with the goal of stealing personal information, such as resumes, social security numbers, or scans of personal ID &#8211; often by using email, social media and job boards to reach victims.<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>&nbsp;<span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">&#8220;We\u2019re hiring! Fill out this survey and upload your resume.&#8221;<\/span><\/span><\/li>\n\n\n\n<li>&nbsp;<span style=\"color: #000000;\"><b>Case Study:<\/b><span style=\"font-weight: 400;\"> In 2023, a fake recruiter targeted technology employees and got resumes and ID scans to try and commit fraud.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>10. AI-Powered Deepfakes &amp; Voice Cloning<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Criminals are utilizing AI to create synthetic audio and video recordings, including deepfakes, of a trusted person to manipulate a target to act such as moving funds or providing personal or confidential information.&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>Example: <\/b><span style=\"font-weight: 400;\">A voice message from an imaginary &#8220;CEO&#8221; is requesting an urgent transfer of funds.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Case Study: <\/b><span style=\"font-weight: 400;\">A Hong Kong company was defrauded $25M in 2023 after they received a deepfake video call of their CEO.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Industry-Specific_Pretexting_Examples\"><\/span><span style=\"color: #000000;\"><b>Industry-Specific Pretexting Examples<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Healthcare<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Attackers impersonate doctors, nurses, or insurance agents to obtain access to patient health records or billing systems. Violating HIPAA regulations, which puts the organization at risk of lawsuits and fines, is not the only way to breach personal patient privacy.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Finance<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Scammers present themselves as CFO, external auditors, or regulators to trick employees into rerouting wire transfers, opening payroll platforms, or authenticating fraudulent transactions. Often, these attacks are done in tandem and the actors know the organization&#8217;s internal processes.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Education<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Attackers send fake emails of faculty or operational staff (e.g., registrar) asking for student records, financial aid information or account information, subsequently selling that information or committing identity theft or fraud.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Legal<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Cybercriminals impersonate law enforcement, court officials, attorneys, etc., sending subpoenas or legal requests to push law firms or clients to release sensitive case files, or client data.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Government&nbsp;<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Attackers use pretexts to present themselves as suppliers or inspectors as part of the procurement processes. Access is then given to siphon off classified documents, insert malicious hardware or gain access to secured systems.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Legal_Context_of_Pretexting\"><\/span><span style=\"color: #000000;\"><b>Legal Context of Pretexting<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting is prohibited by law in many places &#8212; especially with financial data and health data. Pretexting can trigger several legal penalties.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Gramm-Leach-Bliley Act (GLBA): <\/b><span style=\"font-weight: 400;\">Prohibits the use of false pretenses to gain access to financial information.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Telephone Records Protection Act (2006): <\/b><span style=\"font-weight: 400;\">Criminalizes the use of false identities to gain access to call records.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>GDPR &amp; CCPA:<\/b> <span style=\"font-weight: 400;\">Penalize mishandling or unauthorized collection of personal data.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Legal consequences may include fines, lawsuits, audits, and\/or criminal prosecution.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Risks_Consequences_of_Pretexting_Attacks\"><\/span><span style=\"color: #000000;\"><b>Risks &amp; Consequences of Pretexting Attacks<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Financial Implications<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting can result in fraud, such as phony wire transfers, or invoice fraud. In most cases, recovery of funds will be next to impossible. For example, MacEwan University lost $9M due to a single bogus email.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Compliance Financial Penalties<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Failure to safeguard against data under legislation like HIPAA, SOX, and GDPR may result in an audit and penalty fees. ENISA recently noted that 39.4% of GDPR penalty fees were as a result of breaches associated with pretexting.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Reputation Damage<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Data breaches can affect reputation and erode trust, and ultimately share price, combined with adverse media attention. According to Ponemon in 2020, 65% of consumers lost trust in a company following a data breach, even if their data was not disclosed.&nbsp;<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Identity Theft<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">When personal data are stolen the data is then packaged for sale or schema fraud will continue to affect victims substantially once they become a victim. Organizations may also face the notification of a data breach and in many cases must then provide <a href=\"https:\/\/threatcop.com\/blog\/what-is-identity-theft-in-cybersecurity\/\">identity theft<\/a> protection services.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Operational Disruption<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Attackers generally require a method of infiltrating your organization, and in some cases may be able to utilize ransomware or just steal data. Consider what happened to Colonial Pipeline when they had errors associated with social engineering that disrupted fuel supply for their entire U.S. East Coast.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Legal Liability<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">If the victims seek legal recourse over a preventable data breach, bins typically come down against your organization. If you did not have safeguards for your organization like staff training, a lack of multi-factor authentication, etc. Legal damage claims and independent oversight may be significantly high.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Pretexting_vs_Phishing_Know_the_Difference\"><\/span><span style=\"color: #000000;\"><b>Pretexting vs. Phishing: Know the Difference<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting and phishing are both forms of social engineering; however, the tactics are different. Phishing relies on urgency or fear to motivate you to click quickly based on unsolicited requests, usually through a generic email or text. Pretexting is more personal since research, conversation, and staged interactions build trust.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Let&#8217;s compare the key differences in the table given below:<\/span><\/span><\/p>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"color: #000000;\"><b>Feature<\/b><\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"color: #000000;\"><b>Pretexting<\/b><\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"color: #000000;\"><b>Phishing<\/b><\/span><\/p><\/td><\/tr><tr><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Strategy<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Trust and story<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Fear and urgency<\/span><\/p><\/td><\/tr><tr><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Duration<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Long-term setup<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">One-time trigger<\/span><\/p><\/td><\/tr><tr><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Personalization<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Highly targeted<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Often generic<\/span><\/p><\/td><\/tr><tr><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Goal<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Access and manipulation<\/span><\/p><\/td><td class=\"has-text-align-center\" data-align=\"center\"><p><span style=\"font-weight: 400; color: #000000;\">Immediate click or reply<\/span><\/p><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting is harder to detect and often more damaging.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_to_Prevent_Pretexting_Attacks\"><\/span><span style=\"color: #000000;\"><b>How to Prevent Pretexting Attacks<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Utilize Email Authentication Mechanisms (SPF, DKIM, DMARC)<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Implementing <\/span><a href=\"https:\/\/threatcop.com\/blog\/spf-authentication\/\"><span style=\"text-decoration: underline;\">Sender Policy Framework<\/span><\/a><span style=\"font-weight: 400; color: #000000;\"> (SPF), DomainKeys Identified Mail (DKIM), and Domain-based Message Authentication, Reporting and Conformance (<\/span><span style=\"text-decoration: underline;\"><a href=\"https:\/\/threatcop.com\/tdmarc\">DMARC<\/a>)<\/span><span style=\"font-weight: 400; color: #000000;\">. Each of these mechanisms is designed to confirm that emails are truly a part of your domain, which greatly reduces the risk of spoofed emails as a part of an <\/span><a href=\"https:\/\/threatcop.com\/blog\/email-spoofing-and-email-impersonation-in-cybersecurity\/\"><span style=\"text-decoration: underline;\">impersonation attack<\/span><\/a><span style=\"font-weight: 400; color: #000000;\">.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Use AI for Threat Detection<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Email security solutions that are powered by artificial intelligence can spot uncharacteristic patterns based on employees&#8217; behavior, such as a request for finance at an odd timeframe or an employee receiving a file from a vendor they&#8217;d never done previous business with. These tools enhance a risk detection strategy.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Require Zero Trust for Physical Security<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Don&#8217;t let an otherwise nice and friendly looking visitor gain access simply because of their friendliness. Require your visitors to present ID, use keycard access, and train staff not to hold secure entry doors open for non-verified colleagues or employees. Tailgating and piggybacking are very real threats when it comes to pretexting.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Verify Sensitive Requests Out-of-Band<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">If somebody is requesting sensitive data, sensitive funds, or sensitive access, try to confirm the request through some other communication method. If you receive an email from your CEO requesting a wire transfer, if you are in the organizational funnel, you can then validate the request by calling them or messaging them through their own app which is not email.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Train Employees with Scheduled Phishing and Pretexting Simulations<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/phishing-awareness-and-simulation\">Phishing and pretexting simulations<\/a> help employees experience real time decision making under pressure. To make these simulations truly effective, ensure the training explains why these tactics succeed, not just what they look like, so employees learn to think critically in the moment.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Implement Multi-Factor Authentication (MFA)<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">MFA creates impediments to the attacker&#8217;s desire to access systems ordinarily, but attackers can often get one person to provide their credentials if they only understand usernames and passwords. There should be a requirement for MFA on all sensitive systems including corporate email accounts and remote access.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Vetting Employees and Contractors Screening<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">The most obnoxious type of insider threats can start with pretexting an engaged contractor. This is also an excellent spot to run a complete background check on their history and work experience as it relates to hiring and pre-commencement screening of employees. While recruitment staff can screen new employees, they should also routinely evaluate existing contractor access only to sensitive systems or sensitive data.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Conclusion\"><\/span><span style=\"color: #000000;\"><b>Conclusion<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Pretexting attacks are on the rise, evolving as social manipulation converges with new technologies. We must not rely upon instinct alone &#8211; we need systems, training, and policies.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Encourage your team to question strange requests, even those that look like they come from a trusted party, because verification isn&#8217;t rudeness, it&#8217;s security. With <a href=\"https:\/\/threatcop.com\/threatcop-security-awareness-training\">security awareness awareness tools<\/a>, and preparation, organizations can identify and stop pretexting before damage is done. Share this guide with your teams &#8211; as more people are educated about this threat, only increases the challenge for attackers.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">By being aware of the dangers, having the right tools, and creating a risk-averse culture, organizations can prevent pretexting attempts and detect pretexting before it causes damage. Pass this guide on to your teams, more people will know about what pretexting in cybersecurity is, the harder it will be for attackers.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"FAQs_Pretexting_Attack\"><\/span><span style=\"color: #000000;\"><b>FAQs<\/b><b>: Pretexting Attack<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<div class=\"schema-faq wp-block-yoast-faq-block\"><div class=\"schema-faq-section\" id=\"faq-question-1672639132170\"><strong class=\"schema-faq-question\"><strong>How can we prevent pretexting?<\/strong><\/strong> <p class=\"schema-faq-answer\">To prevent pretexting, an individual or organization should avoid sharing personal information with unknown sources. Also, organizations should implement cybersecurity practices and tools, as a wall against those cyber attacks.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1672639154338\"><strong class=\"schema-faq-question\"><strong>What is pretexting calling?<\/strong><\/strong> <p class=\"schema-faq-answer\">The attack that is done by the mode of communication of voice phone calls can be said as pretexting calling. Pretexting is also a crucial component of vishing, which is basically phishing through phone calls. It is a portmanteau of the words \u201cvoice\u201d and \u201cphishing.\u201d<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1672639170628\"><strong class=\"schema-faq-question\"><strong>What are some common pretexting methods?<\/strong><\/strong> <p class=\"schema-faq-answer\">One of the most common pretexting examples is that the scammer will act as your senior employee and will ask you for some details or money.<\/p> <\/div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>Pretexting is a cybercrime tactic where attackers will create a believable story or backstory that&#8217;ll trick someone into providing sensitive information, transferring funds or giving permission in some other way. Note that pretexting is not fear tactics or threats; it is based on trust. The attacker will likely pretend to be someone already familiar to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":8656,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[43],"tags":[],"class_list":["post-8655","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-social-engineering"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What is Pretexting in Cybersecurity? Techniques, Risks &amp; Prevention<\/title>\n<meta name=\"description\" content=\"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/threatcop.com\/blog\/pretexting\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is Pretexting in Cybersecurity? Techniques, Risks &amp; Prevention\" \/>\n<meta property=\"og:description\" content=\"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it\" \/>\n<meta property=\"og:url\" content=\"https:\/\/threatcop.com\/blog\/pretexting\/\" \/>\n<meta property=\"og:site_name\" content=\"Threatcop\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/\" \/>\n<meta property=\"article:published_time\" content=\"2022-12-09T06:36:31+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-12T12:42:20+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1250\" \/>\n\t<meta property=\"og:image:height\" content=\"1200\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Threatcop\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatcop\" \/>\n<meta name=\"twitter:site\" content=\"@threatcop\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Threatcop\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/\"},\"author\":{\"name\":\"Threatcop\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/e4db27ffd37219d73fc6b40cc9d45cfa\"},\"headline\":\"What is Pretexting in Cybersecurity? Techniques, Risks and Prevention\",\"datePublished\":\"2022-12-09T06:36:31+00:00\",\"dateModified\":\"2025-06-12T12:42:20+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/\"},\"wordCount\":2406,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/01\\\/Pretexting.jpg\",\"articleSection\":[\"Social Engineering\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#respond\"]}]},{\"@type\":[\"WebPage\",\"FAQPage\"],\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/\",\"name\":\"What is Pretexting in Cybersecurity? Techniques, Risks & Prevention\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/01\\\/Pretexting.jpg\",\"datePublished\":\"2022-12-09T06:36:31+00:00\",\"dateModified\":\"2025-06-12T12:42:20+00:00\",\"description\":\"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#breadcrumb\"},\"mainEntity\":[{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639132170\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639154338\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639170628\"}],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#primaryimage\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/01\\\/Pretexting.jpg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/01\\\/Pretexting.jpg\",\"width\":1250,\"height\":1200,\"caption\":\"Pretexting Attack\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What is Pretexting in Cybersecurity? Techniques, Risks and Prevention\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"name\":\"Threatcop\",\"description\":\"Cybersecurity Blogs, News, Updates, and Articles\",\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\",\"name\":\"Threatcop\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/threatcop-logo-black-1.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/threatcop-logo-black-1.png\",\"width\":432,\"height\":102,\"caption\":\"Threatcop\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/people\\\/Threatcop\\\/100083109892339\\\/\",\"https:\\\/\\\/x.com\\\/threatcop\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/threatcop\\\/\",\"https:\\\/\\\/www.instagram.com\\\/threatcop_official\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/e4db27ffd37219d73fc6b40cc9d45cfa\",\"name\":\"Threatcop\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"caption\":\"Threatcop\"},\"sameAs\":[\"https:\\\/\\\/threatcop.com\"]},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639132170\",\"position\":1,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639132170\",\"name\":\"How can we prevent pretexting?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"To prevent pretexting, an individual or organization should avoid sharing personal information with unknown sources. Also, organizations should implement cybersecurity practices and tools, as a wall against those cyber attacks.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639154338\",\"position\":2,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639154338\",\"name\":\"What is pretexting calling?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"The attack that is done by the mode of communication of voice phone calls can be said as pretexting calling. Pretexting is also a crucial component of vishing, which is basically phishing through phone calls. It is a portmanteau of the words \u201cvoice\u201d and \u201cphishing.\u201d\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639170628\",\"position\":3,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/pretexting\\\/#faq-question-1672639170628\",\"name\":\"What are some common pretexting methods?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"One of the most common pretexting examples is that the scammer will act as your senior employee and will ask you for some details or money.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is Pretexting in Cybersecurity? Techniques, Risks & Prevention","description":"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/threatcop.com\/blog\/pretexting\/","og_locale":"en_US","og_type":"article","og_title":"What is Pretexting in Cybersecurity? Techniques, Risks & Prevention","og_description":"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it","og_url":"https:\/\/threatcop.com\/blog\/pretexting\/","og_site_name":"Threatcop","article_publisher":"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","article_published_time":"2022-12-09T06:36:31+00:00","article_modified_time":"2025-06-12T12:42:20+00:00","og_image":[{"width":1250,"height":1200,"url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg","type":"image\/jpeg"}],"author":"Threatcop","twitter_card":"summary_large_image","twitter_creator":"@threatcop","twitter_site":"@threatcop","twitter_misc":{"Written by":"Threatcop","Est. reading time":"11 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#article","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/"},"author":{"name":"Threatcop","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/e4db27ffd37219d73fc6b40cc9d45cfa"},"headline":"What is Pretexting in Cybersecurity? Techniques, Risks and Prevention","datePublished":"2022-12-09T06:36:31+00:00","dateModified":"2025-06-12T12:42:20+00:00","mainEntityOfPage":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/"},"wordCount":2406,"commentCount":0,"publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"image":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg","articleSection":["Social Engineering"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/threatcop.com\/blog\/pretexting\/#respond"]}]},{"@type":["WebPage","FAQPage"],"@id":"https:\/\/threatcop.com\/blog\/pretexting\/","url":"https:\/\/threatcop.com\/blog\/pretexting\/","name":"What is Pretexting in Cybersecurity? Techniques, Risks & Prevention","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#primaryimage"},"image":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg","datePublished":"2022-12-09T06:36:31+00:00","dateModified":"2025-06-12T12:42:20+00:00","description":"Pretexting is a type of social engineering attack that involves a pretext, constructed by hackers to bait victims. Learn more about it","breadcrumb":{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#breadcrumb"},"mainEntity":[{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639132170"},{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639154338"},{"@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639170628"}],"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/threatcop.com\/blog\/pretexting\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#primaryimage","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/01\/Pretexting.jpg","width":1250,"height":1200,"caption":"Pretexting Attack"},{"@type":"BreadcrumbList","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/threatcop.com\/blog\/"},{"@type":"ListItem","position":2,"name":"What is Pretexting in Cybersecurity? Techniques, Risks and Prevention"}]},{"@type":"WebSite","@id":"https:\/\/threatcop.com\/blog\/#website","url":"https:\/\/threatcop.com\/blog\/","name":"Threatcop","description":"Cybersecurity Blogs, News, Updates, and Articles","publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/threatcop.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/threatcop.com\/blog\/#organization","name":"Threatcop","url":"https:\/\/threatcop.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2026\/06\/threatcop-logo-black-1.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2026\/06\/threatcop-logo-black-1.png","width":432,"height":102,"caption":"Threatcop"},"image":{"@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","https:\/\/x.com\/threatcop","https:\/\/www.linkedin.com\/company\/threatcop\/","https:\/\/www.instagram.com\/threatcop_official\/"]},{"@type":"Person","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/e4db27ffd37219d73fc6b40cc9d45cfa","name":"Threatcop","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","caption":"Threatcop"},"sameAs":["https:\/\/threatcop.com"]},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639132170","position":1,"url":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639132170","name":"How can we prevent pretexting?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"To prevent pretexting, an individual or organization should avoid sharing personal information with unknown sources. Also, organizations should implement cybersecurity practices and tools, as a wall against those cyber attacks.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639154338","position":2,"url":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639154338","name":"What is pretexting calling?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"The attack that is done by the mode of communication of voice phone calls can be said as pretexting calling. Pretexting is also a crucial component of vishing, which is basically phishing through phone calls. It is a portmanteau of the words \u201cvoice\u201d and \u201cphishing.\u201d","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639170628","position":3,"url":"https:\/\/threatcop.com\/blog\/pretexting\/#faq-question-1672639170628","name":"What are some common pretexting methods?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"One of the most common pretexting examples is that the scammer will act as your senior employee and will ask you for some details or money.","inLanguage":"en-US"},"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/8655","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/comments?post=8655"}],"version-history":[{"count":8,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/8655\/revisions"}],"predecessor-version":[{"id":12743,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/8655\/revisions\/12743"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media\/8656"}],"wp:attachment":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media?parent=8655"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/categories?post=8655"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/tags?post=8655"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}