Whaling is a type of phishing attack that targets high-level executives with the purpose of stealing sensitive information from a company. The term 'whaling' is used because it refers to going after the 'big fish' or high-value targets within an organization. Unlike typical phishing attacks, whaling emails are highly customized and often include specific details relevant to the target to make them appear more legitimate.