Social engineering.
In plain English
Social engineering is the broad craft behind most scams: manipulating a person, rather than breaking a system, into handing over information, access, or money. It works by pulling emotional levers, urgency, fear, authority, sympathy, or the promise of a reward, to short-circuit careful thinking. Phishing, vishing, and imposter scams are all forms of it. Understanding social engineering as the common thread is useful because the defense is the same across all of them: slow down, and verify a request through a separate, trusted channel before acting, especially when the message pushes you to act fast.
01Why it matters
Because social engineering targets human trust rather than technology, no software fully blocks it, so the reliable defense is a habit, pausing to verify urgent requests, that applies across every scam type.
02The math, step by step
A message creates a sense of crisis, your account is about to be closed, act now, so you respond before thinking. The urgency is the tool, designed to keep you from pausing to check. Recognizing the pressure itself as the warning sign is the counter.
03What this is NOT
It is not a technical attack. Social engineering targets people, not code, persuading someone to grant access or money voluntarily. That is why strong passwords alone cannot stop it and why a verify-first habit matters so much.
04Receipts
Every figure on this page is sourced to a primary document. Tap to open the original.