In phishing scams, what is typically requested from the victims?

In phishing scams, victims are typically requested to provide personal information such as passwords. Phishing is a fraudulent activity where attackers impersonate legitimate entities to deceive individuals into revealing sensitive information. The primary aim is often to gain unauthorized access to accounts, which is why passwords are a common target.

Attackers may create fake emails or websites that closely resemble those of reputable organizations, tricking users into entering their credentials. Once they obtain this information, cybercriminals can misuse it to steal identities, access financial accounts, or distribute malware.

While other forms of personal data like social security numbers or bank account statements may also be sought after in broader types of scams or identity theft scenarios, the immediate focus of phishing attacks is most often on credentials like usernames and passwords, which allow attackers quick entry into personal accounts.