Course Content
Introduction
Social engineering attacks are successful because they exploit predictable aspects of human behaviour. One of the most important concepts behind these attacks is cognitive bias. Cognitive biases are patterns in the way people think and make decisions, particularly when under stress, pressure, or emotional influence. Attackers take advantage of these biases in order to manipulate victims into making poor security decisions. Rather than hacking computer systems directly, social engineers often “hack” human behaviour by exploiting emotions such as fear, trust, urgency, and authority. Understanding cognitive bias is important because it helps explain why even intelligent and security-aware individuals can still fall victim to phishing and manipulation-based attacks.
0/6
Introduction
What is Cognitive Bias?
Why Do Cognitive Biases Matter in Cybersecurity?
Common Cognitive Biases Exploited in Social Engineering
Real-World Example
Summary
Understanding Cognitive Bias in Social Engineering

Cognitive bias refers to a tendency for people to think or make decisions in predictable ways that may not always be rational or logical.

People often rely on:

  • emotions,
  • assumptions,
  • habits,
  • and quick decision-making

in everyday situations. While this helps people make decisions quickly, it can also make them vulnerable to manipulation.

Social engineers exploit these natural behaviours in order to influence victims into:

  • clicking malicious links,
  • sharing sensitive information,
  • sending money,
  • or bypassing security procedures.
Previous
Next