What is social engineering and how do scammers use it?
Social engineering is the use of psychological manipulation to bypass rational thinking and persuade people to take actions they would otherwise refuse, such as sharing sensitive information or sending money.
Last reviewed: 10 June 2026
Explanation
Social engineering is the human-facing side of fraud — the techniques scammers use to influence behaviour rather than exploit technical vulnerabilities. It works because human psychology has predictable patterns: we respond to authority, we help people in distress, we fear loss, and we want to reciprocate kindness. Each of these patterns can be exploited by someone who understands them and is willing to use them deliberately.
Authority is one of the most powerful levers. A caller who presents as a police officer, tax investigator, or bank security specialist carries immediate credibility. People are conditioned from childhood to cooperate with authorities, and breaking that conditioning in a moment of pressure requires a conscious effort that is hard to make while also managing the anxiety the caller is generating. Scammers often compound authority by referencing specific official-sounding case numbers or statutes.
Urgency eliminates careful thinking. When a caller says you must act within the next hour or your account will be closed, you will be arrested, or someone you care about will suffer, the adrenaline response narrows focus to the immediate threat. Rational assessment of whether the scenario is plausible requires the kind of reflective thinking that urgency is specifically designed to disable. This is why taking any amount of time — even just hanging up and calling back — is so effective as a defence.
Scarcity and flattery are used in investment fraud. 'I'm only sharing this with a few people I trust' or 'this opportunity closes tonight' both exploit the desire not to miss out. Being made to feel special, selected, or inside a privileged group activates the same willingness to proceed without checking. Understanding these mechanisms allows people to name them when they feel them — 'this is a scarcity tactic' — which disrupts their effectiveness.
Common red flags
- Extreme urgency — you must act within minutes or hours
- A caller claims special authority (police, tax investigator, fraud department)
- You are flattered or made to feel specially selected for an opportunity
- Fear of consequences is the primary reason you are given to act
- The caller insists you must not tell anyone else
- Multiple pressure tactics are used in rapid succession
What to do now
- Recognise the tactic being used: authority, urgency, scarcity, or flattery
- Apply a simple rule: any unexpected communication requesting money or information warrants a pause and independent verification
- Hang up and call back on a verified number — legitimate organisations support this
- Tell someone else about the contact before taking any action
- Remember that the urgency itself is the manipulation — the real deadline is made up
Frequently asked questions
Is social engineering only used in phone scams?
No. Social engineering appears in email, SMS, dating apps, social media, in-person scenarios, and even physical mail. Whenever a human being is being manipulated psychologically rather than a system being exploited technically, social engineering is occurring.
Can educated or highly intelligent people resist social engineering?
Intelligence and education help, but they do not provide immunity. Social engineering targets emotional responses, and everyone has emotional responses. Research shows that being in a stressed or distracted state significantly reduces resistance regardless of education level.