CAPEC-407: Pretexting

Description
An adversary engages in pretexting behavior to solicit information from target persons, or manipulate the target into performing some action that serves the adversary's interests. During a pretexting attack, the adversary creates an invented scenario, assuming an identity or role to persuade a targeted victim to release information or perform some action. It is more than just creating a lie; in some cases it can be creating a whole new identity and then using that identity to manipulate the receipt of information.
Extended Description

Pretexting can also be used to impersonate people in certain jobs and roles that they never themselves have done. In simple form, these attacks can be leveraged to learn information about a target. More complicated iterations may seek to solicit a target to perform some action that assists the adversary in exploiting organizational weaknesses or obtaining access to secure facilities or systems. Pretexting is not a one-size fits all solution. Good information gathering techniques can make or break a good pretext. A solid pretext is an essential part of building trust. If an adversary’s alias, story, or identity has holes or lacks credibility or even the perception of credibility the target will most likely catch on.

Severity :

Low

Possibility :

Medium

Type :

Standard
Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-163: Spear Phishing Spear Phishing CAPEC-383: Harvesting Information via API Event Monitoring Harvesting Information via API Event Monitoring CAPEC-410: Information Elicitation Information Elicitation CAPEC-412: Pretexting via Customer Service Pretexting via Customer Service CAPEC-413: Pretexting via Tech Support Pretexting via Tech Support CAPEC-414: Pretexting via Delivery Person Pretexting via Delivery Person CAPEC-415: Pretexting via Phone Pretexting via Phone CAPEC-416: Manipulate Human Behavior Manipulate Human Behavior
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • The adversary must have the means and knowledge of how to communicate with the target in some manner.The adversary must have knowledge of the pretext that would influence the actions of the specific target.
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Low The adversary requires strong inter-personal and communication skills.
Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

ATTACK | Gather Victim Identity Information
Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

Visit http://capec.mitre.org/ for more details.