This document summarizes a case study of a successful social engineering attack against a company called EW and its client WFC. A hacker was able to exploit personal information publicly available online about an employee of EW, Mr. Farmer, to manipulate him into providing password details. This enabled the hacker to access company systems and client credit card information, resulting in financial losses and contract termination for EW. The case highlights the need to educate employees about securely handling personal information online and the risks of social engineering.