Using people to gain access to a location or system. This often entails the intruder pretending to be someone that they are not in order to get access or information that is not usually available.
Phishing is a common type of social engineering.
E-mail or phone calls designed to appear legitimate in order to gain personal information or access to your system.
Groups and locations offering free wi-fi can be excellent. It's also an easy way for malicious actors to view all of the data, including usernames and passwords, that you're sending over that network.
Whenever possible, try not to use unsecured networks.
- Open profiles can offer too much information to thieves or malicious entities.
- Posts can give away your location, routines and behavior.
More can be found here from the Privacy Rights Clearinghouse.