Phishing is a type of cyber-attack where a malicious actor poses as a reputable entity or business in order to deceive people and collect their private information - such as credit card details, usernames, passwords and so forth.

Since phishing involves psychological manipulation and relies on human failures (instead of hardware or software) it is considered a type of social engineering attack.

Typically, phishing attacks make use of fraudulent emails that convince the user to enter sensitive information into a fraudulent website.