No IT infrastructure policies in the home workspace increase the surface area for social engineering attacks.

Humans are the weakest links in security. When at home, people are more relaxed and less professional. This might be new to the employees who are used to working in their desk setups in their corporate workspace with surveillance, IT admin, and workplace policies.

Working at home during a pandemic stresses individuals exposing them to social engineering attacks,

One such attack was using corona fear to trap people by creating clickbait links leading to Cross-site scripting.

Not everyone is aware of giving their personal information. People fill out online forms for free coupons in exchange for email id and personal information.

Social engineering also affects some people mentally due to blackmailing using dating websites and/or social media.

"Google says it blocks 18M malicious coronavirus-related emails from your inboxes daily"

And 240M usual spam every day by Gmail's automated spam filtering.

The best way to reduce attacks is to handle them even before they reach employees. We can use anti-virus, DMZ, and web filtering to stop them from reaching targeted systems.