What type of attack involves sending a false link via an email to collect personal data from targeted users?

Phishing is a type of cyber attack where an attacker sends fraudulent emails that appear to be from a legitimate source in an attempt to trick recipients into revealing sensitive information, such as usernames, passwords, and financial details. This technique often involves embedding a malicious link within the email that redirects users to a spoofed website designed to look like a trusted entity.

The method relies heavily on social engineering tactics to create a sense of urgency or trust, motivating targets to click on the link and disclose their personal data. Phishing attacks can be very effective because they exploit human psychology rather than technical vulnerabilities.

In contrast, other options describe different forms of targeting individuals through communication channels. Vishing involves voice calls, where scammers use phone calls to extract sensitive information. Smishing is similar to phishing but occurs through SMS text messages instead of emails. Spamming generally refers to unsolicited emails that are sent in bulk, often for advertising purposes, without a focused effort to deceive regarding a specific threat or to collect personal data. Thus, phishing is distinctly characterized by its use of deceitful emails containing false links to harvest personal information.