What term describes a threat actor who uses deception to manipulate and infiltrate systems?

The term that best describes a threat actor who uses deception to manipulate and infiltrate systems is "phisher." Phishing involves tactics such as creating fake communications or websites that appear legitimate, thereby tricking individuals into providing sensitive information, such as passwords or credit card numbers. This deceptive approach is the hallmark of phishing attacks, which focus on exploiting human psychology rather than vulnerabilities in systems or software.

While hackers can also employ deceptive techniques, their activities typically encompass a broader range of malicious actions, including exploiting technical vulnerabilities, which is not limited to psychological manipulation. Insider threats refer to individuals within an organization who might misuse their access or knowledge, but they do not specifically center on the deceptive tactics commonly associated with phishing. Cybercriminal is a general term that includes a multitude of illegal activities conducted online, but does not specifically emphasize the deception aspect inherent in phishing attacks. Thus, "phisher" is the term that most accurately captures the strategic use of deception to gain unauthorized access to information or systems.