Phishing
A cyberattack that uses fraudulent emails, text messages, or websites to trick people into revealing sensitive information. Attackers impersonate trusted entities to steal credentials, financial data, or install malware.
Extended Explanation
Phishing is the most common form of social engineering and remains the leading cause of data breaches worldwide. Attacks range from mass-distributed generic emails to highly targeted campaigns. Modern phishing often bypasses traditional email filters by using legitimate services, compromised accounts, or zero-day domains. Organizations combat phishing through security awareness training, email filtering, multi-factor authentication, and phishing simulation programs.
Related Terms
Smishing
phishingSMS phishing that uses text messages to lure victims into clicking malicious links or providing sensitive information. M...
Spear Phishing
phishingA targeted phishing attack directed at specific individuals or organizations. Unlike generic phishing, spear phishing us...
Vishing
phishingVoice phishing conducted over phone calls or voice messages. Attackers impersonate banks, government agencies, or tech s...
Whaling
phishingA spear phishing attack specifically targeting high-ranking executives such as CEOs, CFOs, or board members. These attac...