Match the social engineering description on the left with the appropriate attack type on the right.
Phishing
An attacker sends an email pretending to be from a trusted organization, asking users to access a web site to verify personal information.
Whaling
An attacker gathers personal information about the target individual, who is a CEO.
Spear phishing
An attacker gathers personal information about the target individual in an organization.
Dumpster diving
An attacker searches through an organization's trash looking for sensitive information.
Piggybacking
An attacker enters a secured building by following an authorized employee through a secure door without providing identification.
Vishing
An attacker uses a telephone to convince target individuals to reveal their credit card information.