No one likes to get duped. Egos are bruised, trust is lost, and coworkers and management can be hasty to point fingers. This is often the aftermath of a social engineering attack, when even well-meaning employees fall victim to hacking techniques poised to steal confidential information. Evolving with the times— and the hackers— is sometimes perceived as time consuming, costly, and, for some executives, unnecessary. However, the fact remains that the average cost of a data breach in the U.S. was $8.64 million in 2019, with social engineering attacks accounting for 67 percent of all breaches. How do we safeguard our finances and data, given the alarming statistics? More importantly, how do we get the entire organization on board, so our efforts to increase security awareness are not squandered? It starts with understanding what social engineering actually is. Only after knowing an enemy’s strategies can one hope to defeat them.