Phishing

nounid 3580·updated May 9, 2026

candidate

GlossaryL1 — what DictionaryL2 — how used ThesaurusL3 — relations Universaleverything

A digital form of social engineering that uses authentic-looking—but bogus—emails to request information from users or direct them to a fake Web site that requests information.

polysemous

Classifications

per-axis with provenance

Entity Type

Threat90%rule-basedr:entity.threat.attack.v1

Sensitivity

unclassified

Information Class

unclassified

Variants

3 surface forms

plural: Phishings
possessive: Phishing's
pluralpossessive: Phishings'

Framework definitions

9 senses across 8 frameworks

SANS Glossary of Security Terms1 senseview framework →

§1: The use of e-mails that appear to originate from a trusted source to trick a user into entering valid credentials at a fake website. Typically the e-mail and the web site looks like they are part of a bank the user is doing business with.

National Initiative for Cybersecurity Careers and Studies (NICCS) Cybersecurity Lexicon1 senseview framework →

§1: A digital form of social engineering to deceive individuals into providing sensitive information.

ISACA Cybersecurity Glossary1 senseview framework →

§1: This is a type of electronic mail (e-mail) attack that attempts to convince a user that the originator is genuine, but with the intention of obtaining information for use in social engineering Scope Note: Phishing attacks may take the form of masquerading as a lottery organization advising the recipient or the user's bank of a large win; in either case, the intent is to obtain account and personal identification number (PIN) details. Alternative attacks may seek to obtain apparently innocuous business information, which may be used in another form of active attack.

Federal Financial Institutions Examination Council (FFIEC) IT Examination Handbook Infobase, Glossary1 senseview framework →

§1: A digital form of social engineering that uses authentic-looking—but bogus—e-mail to request information from users or direct them to fake websites that request information.

NISTIR 7298: Glossary of Key Information Security Terms, Revision 22 sensesview framework →

§1: Deceiving individuals into disclosing sensitive personal information through deceptive computer-based means.
§2 · sense_2_pending_review: A digital form of social engineering that uses authentic-looking—but bogus—emails to request information from users or direct them to a fake Web site that requests information.

CNSSI-4009 (Glossary of Information Assurance Terms)1 senseview framework →

§1: Deceiving individuals into disclosing sensitive personal information through deceptive computer-based means.

NIST SP 800-1151 senseview framework →

§1: A digital form of social engineering that uses authentic-looking—but bogus—emails to request information from users or direct them to a fake Web site that requests information.

NIST SP 800-831 senseview framework →

§1: Tricking individuals into disclosing sensitive personal information through deceptive computer-based means.

Outgoing relationships

term as subject — 0 triples

No outgoing triples

This term is not the subject of any RDF-style relationship yet.

Incoming relationships

term as object — 0 triples

No incoming triples

No other term currently asserts a relationship to this one.