Think of social engineering as the act of exploiting people instead of computer systems. Social engineering techniques include showing up dressed as delivery people, tech support, corporate attorney, salespeople, job applicants. People throughout the organization can be approached at any time: friended online, approached at trade shows, or have criminals act as insiders as part of an attack. Often, its the goal of the social engineer to push an attack just one step further by obtaining a password, or even getting a name that can be dropped in a deeper social engineering attack.”]
Source: https://www.csoonline.com/article/2864598/the-2015-social-engineering-survival-guide.html