This is a form of attack which relies on human psychology rather than technology. It aims to cause human error, by tricking a user into giving out confidential information or access to your data, network, or other valuable resources. Seemingly innocuous questions, that rely on someone’s natural instinct to trust and believe who they’re talking to.