Whaling is a form of targeted phishing attack in which cybercriminals specifically target high-ranking executives, decision-makers or top managers in companies or organizations.

These attacks focus on important targets whose exposure can have a significant impact on the organization. Sophisticated social engineering techniques are used to gain the trust of the target, e.g. through fake emails or messages that appear to be trustworthy. The aim of these attacks is to obtain sensitive company information, financial data or access to important systems.

To protect themselves from whaling attacks, organizations use various security measures. These can include, for example: Training for employees, email filters or multi-factor authentication.