Spear Phishing
Definition
Spear phishing is a targeted form of phishing where attackers tailor their attack to a specific individual or organization. Unlike generic phishing, the message is personalized with specific information about the target.
In spear phishing, attackers first gather information about the target through social media, LinkedIn, or public sources. They then send a convincing email that appears to come from a known party, such as the CEO or a colleague.
Spear phishing is more dangerous than regular phishing because it is harder to recognize. Many major data breaches started with a successful spear phishing attack.