Phishing: Meaning and Definition

Phishing is a social-engineering attack in which criminals send fraudulent communications — emails, SMS messages (smishing), voice calls (vishing), or chat messages — designed to look like they come from a trusted source, in order to steal credentials, payment data, or trigger malware installation. Modern phishing relies heavily on look-alike domains, brand impersonation, and deepfake voice. Defenses include email authentication, URL filtering, look-alike domain takedowns, and continuous user education on how to verify suspicious messages.