A form of social engineering in which the attacker provides what appears to be a legitimate communication (usually email), but it contains hidden or embedded code that redirects the reply to a third-party site in an effort to extract personal or confidential information.