What type of cyber attack is characterized by a link in an email that appears legitimate but is designed to deceive users?

The type of cyber attack characterized by a link in an email that appears legitimate but is designed to deceive users is known as phishing. Phishing attacks typically involve fraudulent emails that mimic reputable organizations, often leading recipients to click on harmful links that may harvest sensitive information or deliver malware.

Spear phishing is similar to phishing but is more targeted. It focuses on specific individuals or organizations rather than a broad audience, which is not the case in this scenario. Whaling is a variant of phishing aimed at high-profile targets, such as executives, making it a more sophisticated form of targeted attacks. Smishing, on the other hand, involves malware delivered via SMS messages rather than email, so it does not fit the description provided in the question.

Therefore, the correct choice clearly identifies a general form of deceptive cyber attacks aimed at a broad range of potential victims via email.