This type of attack includes a cybercriminal using Another type of phishing is spear phishing. This includes the same process as phishing, but the message is targeting one specific person or organization, making the message more dangerous and seem even more legitimate. The goal of the cybercriminal is to still try and gain personal information or credentials or to corrupt the user’s machine with malware. More research with more specific details in the message make spear phishing a little more difficult to catch. to target a group of high-profile individuals, like the C-suite team of an entire organization. Whaling is also referred to as “CEO fraud”.