The most sophisticated network perimeter defense in the world means nothing if an attacker can walk through the front door. Physical access attacks — specifically tailgating and piggybacking — are among the most underappreciated vectors in security assessments, yet they appear in some of the most consequential breaches ever documented.
Defining the Attack Types
Though often used interchangeably, tailgating and piggybacking have a technical distinction:
-
Tailgating: The attacker follows an authorized employee through a secured entrance without the employee’s knowledge or consent. The employee holds the door out of habit or distraction, not realizing they’re being followed.
-
Piggybacking: The attacker enters with the knowledge and complicity of the authorized employee — typically by posing as a contractor, IT worker, or delivery person, or by asking someone to hold the door. The employee may think they’re being helpful.
Both result in the same outcome: unauthorized physical access to a secure facility. Once inside, an attacker can install keyloggers on unattended workstations, plant rogue network devices, photograph sensitive materials, steal equipment, or simply reach systems that are not exposed to the internet.
The Social Engineering Scripts
Physical social engineers rely on a set of well-practiced pretexts. The best attackers dress the part and create context that makes it socially awkward to challenge them:
The IT contractor: Arrives with a tool bag, laptop, and an air of mild frustration. “I’m here for the server room issue — they should have the ticket in the system. Can you badge me in? I’ve been here three times this week.” Few employees will interrogate someone who sounds like they belong.
The delivery person: Arms full of packages, hand truck visible. “My badge reader doesn’t work in this building, could you swipe me in? I just need to get to the receiving area.” Helpfulness overrides security instincts.
The new employee: “I’m starting today, my access card isn’t set up yet. HR said to come in this entrance.” This pretext exploits the genuine desire to help a new colleague.
The executive assistant scenario: Carrying coffee trays or catering supplies, following closely behind a group returning from lunch. No direct request is even made — the attacker simply walks in with the crowd.
What these scripts have in common is they make the potential challenger — the employee — feel that challenging would be rude, unhelpful, or disruptive. The attacker leverages social norms against security protocols.
Real-World Incidents
Uber (2022): While primarily a social engineering attack, the breach began with an attacker contacting an Uber employee via WhatsApp and convincing them to provide MFA codes. The attacker then accessed internal systems including the AWS console and internal Slack. Physical tailgating wasn’t the primary vector here, but the case illustrates how social engineering chains together multiple steps.
U.S. Treasury / Federal Reserve Physical Penetration Tests: Red team engagements at financial institutions have repeatedly demonstrated that tailgating into secure areas is achievable even in facilities with explicit security training, by using common pretexts like IT or maintenance.
Target 2013 Breach (upstream): While the actual breach was network-based through an HVAC vendor, investigators noted that physical access by contractors with legitimate credentials was a contributing factor in the vendor’s network being trusted.
Hospital security studies: Researchers at multiple institutions have documented walking into hospital server rooms, nursing stations with logged-in workstations, and pharmaceutical storage using only a clipboard and confident body language.
Technical and Physical Controls
Mantraps (Airlock Entry Systems)
A mantrap — also called an airlock or sally port — is a physical security control consisting of two doors with a small enclosed space between them. Entry through the outer door does not permit access through the inner door until identity is verified. Only one door can be open at a time.
Mantraps physically prevent tailgating because only one person can pass at a time, and the inner door requires independent verification. They are standard in data centers, server rooms, and government facilities. The limitation is cost — they are expensive to install and create friction for legitimate users.
Access Control Technologies
| Control | Effectiveness Against Tailgating |
|---|---|
| Standard keycard reader | Low — door can be held by anyone |
| Turnstile with badge reader | Medium — harder to physically bypass |
| Mantrap / airlock | High — physically enforces one-person entry |
| Biometric with anti-passback | High — each person must authenticate separately |
| Security guard at entrance | Variable — depends on guard training and vigilance |
| Video analytics (AI-based tailgate detection) | Medium–High — can flag anomalies in real time |
Anti-passback is a software feature in access control systems that prevents a credential from being used to enter the same area twice without first exiting. This prevents an employee from badging in and then handing their card back to someone outside.
Badge Policies
Physical security policies must address badge use explicitly:
- Never allow anyone to tailgate through a secured door, regardless of their apparent credentials or reason
- Challenge anyone not displaying a visible badge in secure areas — “Can I help you find someone?” is a non-confrontational challenge
- Visitor badges must be escorted — visitors should never be left alone in secure areas
- Report unescorted individuals to the security desk immediately
- Contractors must be issued temporary credentials and escorted, not allowed to piggyback on employee access
Security Culture and Training
Technical controls are necessary but insufficient. Employees must feel empowered and supported when they challenge someone — which means organizations must reward security-conscious behavior rather than treating challenges as rudeness.
Simulated physical penetration tests — where a red team attempts tailgating — are valuable training tools. Employees who successfully challenge a tester should be recognized. Employees who allow unauthorized access should receive remedial training without punitive measures that would discourage future challenges.
The core insight is this: the attacker’s most powerful tool is the target employee’s desire to be helpful and avoid confrontation. Countering that requires more than a policy memo — it requires a practiced habit of respectful challenge, backed by management support when that habit creates friction.