Social engineering attacks

What is meant by social engineering attacks?

These are attempts by attackers to trick their victims into performing a certain action, such as clicking on a webpage or opening an attachment.

How they work

Most social engineering attacks involve a multi-step process. For example, a user could be approached on Facebook and offered to click on a video, which has been clickjacked. The user gets redirected to an infected website which encourages the user to download a plugin to see the video. The download link includes malware and PUA installers that steal login details.

The Avira Security Wordbook

Search our threat glossary for clarifications on frequently used terms in IT security.