People can be the strongest or the weakest link in your defence. Assess your crew and their current state of preparation against external attacks and malicious actors.
Even the most advanced technological solutions are vulnerable when your staff do not understand how to resist external attacks.
Mirroring a real attack, social engineering tests are aimed at gaining unauthorized access to data, confidential information, passwords, systems, users or rooms by precisely planned manipulation. These tests highlight employees’ knowledge and skills in complying with your corporate security policies, common-sense practices when communicating digitally, and their vigilance towards social engineering attack.
During testing, we use techniques effective in the world of cybercrime, such as:
Particular social engineering tests can apply to all employees of the company, specific departments or individuals.
Our research is always preceded by Open-Source Intelligence (OSINT), during which we collect data about the company from publicly available sources. We use many different communication channels:
The information collected in this way can improve the effectiveness of our attack, thanks to a better adjustment of the test scenario to a specific situation.