Which term describes attempts to acquire sensitive information by disguising as a trustworthy entity?

The term that describes attempts to acquire sensitive information by disguising as a trustworthy entity is phishing. Phishing is a technique where attackers impersonate reputable organizations, such as banks or popular online services, to trick individuals into providing personal information like usernames, passwords, or credit card numbers. This is typically done through emails or messages that appear legitimate, prompting users to click links or download attachments that lead them to fraudulent websites or malware installations.

The fundamental idea behind phishing is deception and social engineering, leveraging trust in recognizable brands or entities to lure victims into providing sensitive information. It is a widespread practice due to its effectiveness and low cost. Understanding phishing is critical for both individual and organizational cyber hygiene, enabling users to recognize suspicious communications and protect themselves against identity theft and financial loss.