Definition
Phishing
Phishing is a scam in which an attacker pretends to be a trustworthy entity to trick the victim into revealing sensitive data such as credentials.
It involves direct communication with the victim — via email, phone, or instant messengers — and often directs victims to websites that are almost indistinguishable from the legitimate ones.
Classes
Classic Phishing
A large number of messages are spammed to as many recipients as possible. The attack is indiscriminate and relies on volume.
Spear Phishing
Targets are accurately researched and the communication is tailored to the victim to make it more plausible. The attack is highly targeted and often more effective than classic phishing.