Phishing

(n.) The act of sending an e-mail to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail directs the user to visit a Web site where they are asked to update personal information, such as passwords and credit card, social security, and bank account numbers, that the legitimate organization already has. The Web site, however, is bogus and set up only to steal the user’s information. http://www.webopedia.com/

Protect yourself

Even before phishing became so prevalent, legitimate businesses and financial institutions would hardly ever ask for personal information via e-mail. If you receive such a request, call the organization and ask if it's legitimate or check its legitimate Web site.
Look for misspellings and bad grammar. While an occasional typo can slip by any organization, more than one is a tip-off to beware.
If the e-mail refers you to a Web site, look carefully at the URL. It's easy to disguise a link to a site.

• Watch out for “phishy” emails.
• Don’t click on links within emails that ask for your personal information
• Never enter your personal information in a pop-up screen.
• Know that phishing can also happen by phone.

Take the phishing Test

http://www.sonicwall.com/phishing/