Which of the following would be a best practice to prevent users from being vulnerable to social engineering?

(A) Provide thorough and frequent user awareness training
(B) Provide a service level agreement that addresses social engineering issues
(C) Have a solid acceptable use policy in place with a click through banner
(D) Have users sign both the acceptable use policy and security based HR policy

Social engineering involves crimes which are committed by manipulation human behavior or we can say hackers try to take advantage of simplicity of human behavior.

It is form of attack whereby one can gain access to a network or system simply by manipulation with human emotion and their behavior. We may sometimes receive mail from sources whereby it can ask for donation for people victim of some disease, Then out of pity we can go for online transaction whereby we need to disclose our account details ans the attacker gets an access to our system.

So in order to avoid these crimes training there should be proper and thorough training to aware the public and the people how they should not reveal their details to other persons. They can also be made aware regarding identifying which mail is original and which is not. these trainigs should be in bulk numbers so that people get to know the techniques of the hackers and their ways to lure them into crimes.