The phishing attack targets the client's email and any other connection medium to illicitly get the user credentials of e-commerce websites, educational websites, banks, credit card information, and other crucial user information. Exploitations caused by different types of cyberattacks result in data loss, identity theft, financial loss, and various other adversaries on both human and infrastructure. Therefore, investigating the threats and vulnerabilities on web applications and analysis of recent cyberattacks on web applications can also provide a holistic scenario about the recent security standpoint. Therefore, in this chapter, phishing attack techniques and their current scenario will be discussed extensively. Moreover, recent phishing techniques will be discussed to understand the severity of this type of attack. Finally, this chapter will outline the proposed and existing countermeasures for protecting users' identities and credentials from the phishing technique.