Spear phishing, a sophisticated phishing that targets specific individuals or organizations, highlights the critical intersection of human psychology and cybersecurity. Spear-phishing is meticulously crafted to deceive particular targets, often using personalized information to increase the likelihood of success. This tactic demonstrates that even the most secure technological systems can be compromised through human vulnerability. It underscores the need for comprehensive cybersecurity strategies beyond training and awareness programs. In most phishing instances, a malicious file is downloaded onto the disk of the endpoint, something current AV/EDRs are more than capable of detecting and preventing. Establishing a culture of continuous security testing is crucial in mitigating the risks of such targeted cyber threats.