Which term describes an attack using deceptive emails or links to steal credentials?

Phishing is a social-engineering technique where attackers impersonate trusted entities in emails or messages to lure you into revealing usernames, passwords, or other sensitive data. The deceptive email or link often directs you to a fake login page or asks you to enter credentials, making credential theft the primary goal. This aligns exactly with the scenario described, which is why phishing is the best answer. Other methods differ in how they obtain data: dumpster diving involves physically rummaging for sensitive information, pharming redirects you to fraudulent sites through DNS tricks rather than via malicious emails or links, and click-jacking fools you into clicking hidden elements on a page, not primarily about stealing credentials through deceptive messages.