Social Engineering
Humans are often the weakest link in an organization. Our engineers are capable of performing detailed phishing, vishing, whaling, and other advanced social engineering attacks with an end goal of evaluating your company’s social engineering posture as well as gaining access to requested sensitive data, information, PII, and more as determined by the customer.
Social engineering attacks can come in many forms. Social engineering is defined as the psychological manipulation of people into performing actions or divulging confidential information.
It sounds like a Jedi mind trick, but in reality, it is a trick based on human perception. Social engineering is the number one threat because it plays on our behavior and tendencies to trust.
Social engineering is recognized as one of the greatest security threats facing organizations. It is extremely effective because the attacks are persuasive and very deceptive.
Recent statistics show that 98% of cyber-attacks rely on some form of social engineering. As much as 21% of current or former employees use Social engineering to gain financial advantage or revenge.
Falconer Security’s dedicated social engineering team is highly qualified, possesses advanced certifications, and is equipped with the labs, tools, and methodologies necessary to consistently deliver quality, accurate, detailed, and meaningful results.
Falconer Security's Approach
Falconer Security leverages industry standard methodologies to ensure a thorough and comprehensive test is conducted under safe and controlled conditions. Falconer Security’s reports are content rich, regularly stand the scrutiny of regulatory requirements, exceed expectations of auditors, and frequently receive the praise of our customers. Falconer Security does not simply validate automated scans.
- We begin every engagement with a friendly chat to better understand your company’s cyber security goals.
- A security engineer and project manager will be assigned to assist in crafting phishing campaigns.
- Carry out social engineering testing via general phishing, spear phishing, and vishing attacks.
- Observations and recommendations collected and formatted into an executive report – including steps towards remediation.
What You Will Get:
Social Engineering detailed report on:
- Your employees’ security awareness level.
- Information disclosed by the employees.
- Email filtering system efficiency.
- Firewall efficiency.
- Sufficiency of your password policy.