Introduction Simply, Social engineering is a process of converting people’s mindsets by being friendly in order to get confidential, private information to execute an attack. It’s not easy to protect systems by using sophisticated hardware and software, security professionals should focus on the weakness of the employees and educate them in order to protect systems from such attacks. Common Patterns Social engineering attacks involve 4 common patterns. Collect information about the target. Build trust with the target. Exploit the information and execute the attack. Quit without leaving any proof. Importance of attack prevention Social engineering attacks are rapidly increasing and cybercriminals have a high chance of obtaining valuable and sensitive organizational information. It is the most powerful attack which cybercriminals use when they cannot find vulnerabilities in software and hardware systems. The phishing is the most common s