What is a phishing link that drops malware?

Malware-dropping phishing combines social engineering with technical attack. Victims click links expecting legitimate content but instead receive malware downloads, either automatically or through convincing "download" prompts.

Common scenarios: fake document links requiring "plugin" installation, software update impersonation triggering malware download, and legitimate-looking download pages serving infected files.

This combines phishing risk (deception) with malware risk (infection). Defense requires: link scanning detecting known malicious destinations, download blocking or scanning, and user awareness that unexpected download prompts are suspicious.