Phishing

Phishing is a type of social engineering attack where attackers send deceptive emails, messages, or create fake websites to trick people into revealing sensitive information like passwords, financial data, or personal details. Phishing is the most common way cyber attacks begin — it's far easier to trick a person than to hack a system.

Phishing attacks range from mass-produced spam to highly targeted 'spear phishing' emails crafted specifically for one person using information gathered from social media and public sources. Business Email Compromise (BEC) is a sophisticated phishing variant where attackers impersonate executives to authorize fraudulent wire transfers.