Home
Microsoft
Defender
Endpoint & identity security
Microsoft 365 Security
M365 hardening & Secure Score
Conditional Access
Zero Trust access control
Purview
Data governance & DLP
Copilot Readiness
Secure before you deploy
Security Testing
External Pen Test
Internet-facing attack surface
Internal Pen Test
Assume-breach & AD attacks
Wi-Fi Pen Test
Wireless network security
Phishing & Social Engineering
Email, vishing, smishing
Protection & Physical
UniFi Protect CCTV
Professional video surveillance
UniFi Door Access
Ubiquiti access control
DNS Filtering
Block threats at the network layer
Awareness Training
Human risk management
View all solutions Talk to an expert
Fortify
Managed cyber security service
Penetration Testing
Find the gaps before attackers do
Audit & Assurance
Essential Eight, ISO 27001, NIST, SMB1001
CCTV & Door Access
Licensed physical security
Secure IT Office Relocation
Move technology safely, without downtime
Incident Response
When something goes wrong
All services
Partners
About Us
Insights
Articles & threat intelligence
Case studies
Real outcomes for Australian businesses
Essential Eight assessment
Estimate your maturity in 5 minutes
All resources

Emergency Contact

Threats & attacks

Pretexting

A social engineering technique where an attacker fabricates a believable scenario or identity to manipulate a target into providing information, access, or performing an action.

In plain English

Pretexting is the art of constructing a convincing false story. An attacker might pose as an IT helpdesk worker needing your password to fix an urgent issue, a new supplier requesting updated payment details, or a government official conducting an audit. The scenario is designed to make the request seem legitimate and time-sensitive.

Keep learning

More terms in the IronSights Glossary.

Back to glossary Read insights