A phishing attack is a type of cyber scam where attackers impersonate legitimate organizations or individuals, typically through emails, messages, or fake websites, to deceive people into revealing sensitive information such as passwords, credit card numbers, or personal details. These attacks often use urgent or convincing language to trick victims into clicking malicious links or downloading harmful attachments. Phishing is one of the most common methods cybercriminals use to gain unauthorized access to accounts or commit identity theft.