Pre-Incident Conditioning

Pre-incident conditioning is a psychological manipulation technique used to prepare targets for future cyberattacks or social engineering campaigns.

Attackers use this approach to gradually establish trust, familiarity, or behavioral patterns with potential victims before launching their primary attack, making the eventual malicious action seem more legitimate or expected.

This technique often involves multiple touchpoints over weeks or months, where cybercriminals might send seemingly benign communications, establish fake relationships, or create artificial urgency around certain topics. For example, an attacker might send several legitimate-looking company updates before eventually including a malicious link in a similar-formatted message, or repeatedly contact someone claiming to be from IT support to normalize such interactions before requesting sensitive information.

Pre-incident conditioning is particularly effective because it exploits human psychology and the tendency to trust familiar patterns. By the time the actual attack occurs, targets have been psychologically primed to respond favorably, having already established a sense of normalcy or trust with the attacker's persona or communication style. This makes pre-incident conditioning a cornerstone of sophisticated spear-phishing campaigns and advanced persistent threat operations.