A social engineer could pose as a technical support person to trick an employee into divulging their login credentials. The fraudster is hoping to appeal to the employee’s desire to help a colleague and, perhaps, act first and think later.

Phishing is an online scam involving emails that appear to be from a trusted source.Recent examples try to convince recipients that they are exceeding their email quota and need to upgrade their account by clicking a link.

• Be skeptical of urgent requests that do not follow typical company procedures and policies.
• Always verify that the email is from the real sender with a quick phone call.
• Report suspicious emails to the Information Security team.

It is the act of looking over the shoulder of an individual form in order to capture personal details to facilitate identity fraud

This is when an authorized person allows someone to follow them through a door to secure area.
This is a threat to security – Be aware!

Pretexting often involves a scam where the liar pretends to need information in order to confirm the identity of the person he is talking to.

It is the telephone equivalent of phishing. It is described as the act of using the telephone to scam the user into surrendering private information that will be used for identity theft.

SMiShing, or SMS phishing, sends a text message to an individual's mobile phone in an attempt to get them to divulge personal information. It usually has a call to action for the intended victim that requires an “immediate response”

This is when an unauthorized person slips in through a door before it closes. Keep in mind that the person trying to follow you in may have been terminated recently.