Social engineering in cybersecurity refers to the manipulation of individuals into divulging confidential information or performing actions that compromise security. Instead of targeting systems directly, attackers exploit human psychology, using tactics like deception, trust-building, or urgency to trick people into giving up sensitive data, such as passwords, personal information, or access to networks. Common social engineering attacks include phishing, pretexting, baiting, and tailgating. The goal is usually to gain unauthorized access to systems or steal information without directly breaching technical defenses.