An attempt to connect to a server by capturing and resending authentication information.

An attack where the attacker secretly relays and possibly alters the communications between two parties who believe they are directly communicating with each other.

Convincing a victim that they are performing a legitimate task within their web browser window when, in fact, they are being tricked into revealing sensitive information or installing malware on their computer.

Exploiting a victim using email messages.

Tricking a victim into revealing sensitive information under false pretenses.

The passive gathering of information about a potential victim.

The use of deception to gain personal and/or private information for unlawful purposes.