Phishing

Phishing is the use of deceptive email, text, or chat messages to trick a person into revealing credentials, approving an MFA prompt, or wiring money. It remains the most common entry point for breaches at small and mid-sized businesses because it targets people, not software. Defences layer technical controls (DMARC, link filtering, phishing-resistant MFA) with regular awareness training.