(also bait and switch)
A social engineering attack where the victim is tricked into installing malicious software on their device. It used to be typically physical objects — infected CDs or USB sticks — that people would insert into their computers, resulting in automatic malware installation. Now, baiting comes in many digital forms. It could be an authentic-looking work email attachment or an ad so clickbaity that people don’t think twice before clicking on it. It all results in malicious software installing itself in the background.