By Tyler Billings

A scenario worth thinking about.

It's 7:42 p.m. on a Tuesday. Most of the office is dark. The security officer at the lobby desk gets a call from an internal extension — the CFO. Voice is right. Cadence is right. The CFO explains he's stuck on a call and forgot a folder in his office; his assistant is on her way over and will be there in ten minutes. Could you let her up to the executive floor without the usual escort? She'll be in and out. Thanks.

Ten minutes later, a woman walks in. Professional. Polite. Mentions the CFO sent her. The officer, having been told to expect her, walks her to the elevator and badges her up.

She is not the CFO's assistant. The voice on the phone was not the CFO. The "internal extension" was spoofed. And the folder she's about to take is worth considerably more than whatever your firm pays per hour for that lobby officer.

This is not hypothetical. Variations of this attack are happening right now, weekly, across industries, against organizations of every size.

The convergence has arrived at your lobby

For two years, the conversation about AI-enabled threats has lived almost entirely in the cybersecurity world. Phishing emails got better. Deepfake video calls fooled a Hong Kong finance team out of $25 million. Voice cloning made the Nigerian-prince scam sound like your own son.

What's gotten less attention is what happens when those same tools point at the physical layer of your security — the people sitting at your front desks, monitoring your cameras, managing your access control, answering your after-hours phones.

These are the people now being targeted. Because while corporate IT has spent the last decade hardening against social engineering, the physical security workforce — historically underpaid, undertrained, and high-turnover — has not. Attackers know this. They are pivoting accordingly.

Why this is a physical security problem now, not a cyber problem

The sophisticated attacks of 2026 are no longer "cyber" or "physical." They're hybrid by design. The phishing email that gathers the CFO's voice samples enables the phone call that gets the unauthorized escort that gets the laptop. Each step alone looks innocuous. The chain is the attack.

The implication for organizations: you cannot defend the physical environment without considering the digital pretext that increasingly precedes physical intrusion. And the people best positioned to interrupt that chain — the officers at the perimeter — need training, protocols, and verification frameworks that almost no contract security firm currently provides as standard.

Specifically:

Verification protocols for inbound requests. Any officer receiving a request to deviate from standard access procedures — based on a phone call, an email, a text from someone claiming authority — needs a documented, drilled callback procedure to a verified line. Not the number that called. Not the number in the email signature. A verified line.

Awareness training that covers AI-enabled social engineering. This is no longer optional. Officers should know that voice cloning is real, that deepfakes are real, that "the CEO told me to" is the most common pretext in the modern playbook. They should be empowered — explicitly — to refuse and escalate, even if the caller claims urgency or seniority.

Clear escalation paths after hours. The most successful social engineering attacks happen at exactly the times when no one is around to verify anything. Officers need to know who to reach, how fast, and what to do if they can't reach anyone. "Use your judgment" is not a protocol.

Documentation as a deterrent. Every unusual request — every callback, every refused entry, every "I'm not sure about this" — should be logged in real time. Attackers run reconnaissance. They probe. A facility where attempts are documented and reviewed is a facility that gets dropped from the target list.

What this means for buyers

If you're contracting with a security firm whose officers earn $14 an hour, turn over every six months, receive a four-hour orientation, and have no awareness training around AI-enabled threats — and that describes a meaningful share of the contract security industry — you are not protected against the threat environment you're actually operating in. You're protected against the threat environment of 2015.

The questions worth asking your current provider:

• What specific training do your officers receive on social engineering and AI-enabled deception?

• What's the written verification protocol when an officer receives an unusual request appearing to come from leadership?

• How are anomalous interactions documented and reviewed?

• What's the average tenure of officers on my site?

If those questions don't have crisp, immediate answers, that's the answer.

The bottom line

The attack surface of a modern organization extends from its email server to its lobby desk, and the people defending the lobby desk are not the people most organizations have invested in. That gap is being noticed — by attackers first, and by the more thoughtful security buyers second.

Which one notices it at your organization first will determine how the next year goes.