Which term describes the practice of acquiring confidential information by unethical means?

The practice of acquiring confidential information by unethical means is best described by the term "Social Engineering." This method involves manipulating individuals into divulging sensitive information or performing actions that may compromise security. Social engineering exploits human psychology rather than technical vulnerabilities, using tactics like deception, persuasion, and building trust to achieve its goals.

Social engineering encompasses various techniques, such as impersonating a trusted figure or crafting convincing communications that prompt the target to share confidential data. While phishing is a specific type of social engineering that often occurs through electronic communication (like emails), social engineering itself is broader and includes any deceptive practice aimed at obtaining information.

Understanding social engineering is crucial, as it highlights the importance of awareness and training in cybersecurity, emphasizing that human factors are often the weakest link in securing sensitive information.