Spear phishing is a targeted phishing attack in which cybercriminals tailor fraudulent emails or messages to specific individuals or organizations. Unlike generic phishing attempts, spear-phishing relies on detailed information about the target, such as its name, job title, organization, or recent activities, raising the credibility of the attack. These information are often obtained from publicly available sources or prior breaches. The scam messages appear to come from trusted sources, like colleagues or business partners and aim to trick the recipient into sharing sensitive information, such as login credentials or financial details. Spear phishing is highly effective due to its detailed personalization and customization, making it harder to detect and more likely to succeed.