Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and, indirectly, money), often for malicious reasons, by disguising as a trustworthy entity in an electronic communication. The word is a neologism created as a homophone of fishing due to the similarity of using a bait in an attempt to catch a victim. According to the 2013 Microsoft Computing Safety Index, released in February 2014, the annual worldwide impact of phishing could be as high as US$5 billion.
Phishing is typically carried out by email spoofing,or instant messaging, and it often directs users to enter personal information at a fake website, the look and feel of which are almost identical to the legitimate one. Communications purporting to be from social web sites, auction sites, banks, online payment processors or IT administrators are often used to lure victims. Phishing emails may contain links to websites that are infected with malware.
Phishing is an example of social engineering techniques used to deceive users, and exploits weaknesses in current web security. Attempts to deal with the growing number of reported phishing incidents include legislation, user training, public awareness, and technical security measures.
IN SIMPLE WORDS
Phishing is a fraudulent attempt,usually made through email,to steal your personal information.They actually make a similar page to like a big site for eg facebook
they will make a page like facebook where they will ask you to enter your email id and password and in this way they get your information ad they hack it
The best way to protect yourself from phishing is yo recognize the phishing attempt
1. it is always sent from big organizations
2. phishing emails almost always ask you to click on the llink that will take you to other sites and will ask to enter your personal information.