A whaling attack, also known as a business email compromise (BEC) attack, is a type of email phishing attack targeting high-profile employees, such as executives, and is typically used to gain access to sensitive information.

To avoid a whaling attack, it is important to:

1. Be wary of suspicious-looking emails, especially those that contain links or attachments.
2. Do not give out sensitive information through emails, such as personal or financial data.
3. Enable two-factor authentication or multi-factor authentication.
4. Be sure to regularly back up important data.
5. Enable anti-virus software and keep it up to date.
6. Review and follow company cybersecurity policies.