You'd go about their routines doing this by finding out who worked for organization. Then you'd engage in a little of what's called "spear phishing". This is the place where you send someone who are your employees for the machines an email that looks similar to it is coming from
