(Let me Google that for you)
is the attempt to obtain sensitive information such as usernames, passwords,
and credit card details (and, indirectly, money), often for malicious reasons,
by disguising as a trustworthy entity in an electronic communication.
-- Phishing - Wikipedia
And yes, it's pronounced fishing, and it is fishing in a way, fishing for your private information.
How does someone get "phished"?
Often it is an email to you that says something like "we need to verify your details", or maybe "someone has accessed your account, if it wasn't you, please click here".
When you click on the link you're taken to a site that looks just like your bank, or wherever it was that is supposed to have sent you the email.
But it's not really your trusted web site, rather it's a phishing site.
When you set up your account, we ask you for some phrases or sayings that you want us to remember.
Whenever you log in, before we ask you for a password or encryption key, we'll show you one of those phrases.
If you ever are asked for a password or encryption key without having been shown one of those phrases, you're not on a trusted site, you're being phished.
Simply put the correct URL in the URL bar on the browser you're using and you'll go to the trusted site.
We'd love to hear from you if you've been phished, so that we can warn others, our email is