How to Avoid Being a Victim of Social Engineering Attacks

How to Avoid Becoming a Victim of Social Engineering Attacks: 

• Always ask for a person’s credentials before letting them into a restricted area. 
• Be suspicious of any email, text, or call asking for personal information. Look out for any communications that create a false sense of urgency and check links before opening them. 
• Don’t be afraid to ask questions or report suspicious behavior. It’s better to be safe than sorry. 
• Always pay attention to URLs; look for typos, suffixes (.com, .net, .co, etc.), and https. 
• Don’t let anyone use your login or credentials; their activity is associated with your name. 
• Don’t tell anyone your login or the answers to your security questions – even outside of work. 
• Watch for clickbait on social media. If it sounds too good to be true, it probably is. 
• Research a website/company that asks for your personal information. Make sure they are legitimate and are taking steps to protect your data. 
• If you are worried about an email, text, or call claiming your account has been hacked, hang up and call the organization back using their official number to see if it’s true. 
• If a person in uniform, such as a delivery man or electrician, asks you to let them in, make sure they have a visitor’s pass, their delivery is scheduled, and call to confirm or ask security, etc.