Spear-phishing is a type of electric communication or email scam through which malicious actors target specific individuals, businesses or organisations. In this case, the objective of the scam is to steal critical information for malicious uses. However, in recent years, cyber-criminals have been using spear-phishing to install malware on the intended computer system or network. In most cases, spear-phishing works through emails that seem to originate from trustworthy sources and often redirect users to websites intended to infect them with harmful malware. Emails used in spear-phishing employ creative tactics to gain the victim’s attention. Sponsored hackers and hacktivists are the most common perpetrators of this kind of attack.