Originally posted here by tampabay420
Social Engineering only works on people who shouldn't have access to sensitive information in the first place...

Nice Tutorial, Spyrus :-)
I don't agree, it doesn't work on well trained call-center employee's but the administrative layer under these call-center employees do the real work and didn't have lot's/any training about this. So to gain sensitive information of a company dial a internal number.. apologise for calling the wrong number and ask if they can give you department X.
A good employee will only give out the call center number but within 5 attempts you should have a number of a internal person at department X. That's when the show starts.

What i'm trying to point out: The people that SHOULD answer the phone SHOULD be trained against social engeneering BUT the pleople with real acces to sensetive data SHOULD be trained (they almost never are) AND shoud be unreachable for the outside world!