CAPEC-424 Metadata
Likelihood of Attack
Low
Typical Severity
Low
Overview
Summary
The adversary influences the target's actions by leveraging the inherent human nature to assume behavior of others is appropriate. In situations of uncertainty, people tend to behave in ways they see others behaving. The adversary convinces the target of adopting behavior or actions that is advantageous to the adversary.
Prerequisites
The adversary must have the means and knowledge of how to communicate with the target in some manner.
Potential Solutions / Mitigations
An organization should provide regular, robust cybersecurity training to its employees to prevent social engineering attacks.
Related CAPECs
| CAPEC ID | Description |
|---|---|
| CAPEC-417 | The adversary uses social engineering to exploit the target's perception of the relationship between the adversary and themselves. This goal is to persuade the target to unknowingly perform an action or divulge information that is advantageous to the adversary. |
Stay Ahead of Attack Patterns
Understanding CAPEC patterns helps security professionals anticipate and thwart potential attacks. Leverage these insights to enhance threat modeling, strengthen your software development lifecycle, and train your security teams effectively.