Phishing, the way i understand it is this.

A trojan is placed in your pc and a piece of software waits until you visit a URL like Myspace or even your bank.

As soon as you are connected, the software starts taking mutiple screen shots and sending them back to the server, then a keylogger starts storing the ASCII values of the keys you are pressing and hey presto the screen shots aquire your username and a quick conversion of the ACSII values works out your password too. Its very clever and devious however, keeping your system clear of trojans is all you can do and if you suspect you have it, change your passwords or type it wrong at first then backspace, re-enter and click the mouse randomly just so it makes it that much harder to decypher the code :)

Be safe

Paulst30 has given an extremely good account of a method of hacking your information by the use of a keylogger or spyware and he highlights a method for making it difficult. (excellent advice Paulst30)
Phishing is a different method of accessing your information. Someone will simply ask you for it. The trouble is that they pretend to be someone who you would give it to, such as your bank, PayPal, etc. Most people don't fall for it, but some do. If you ever get an email supposedly from your bank, or ebay, or Paypal etc. Do Not Answer It. If your bank etc. want to contact you they will do it through a secure message via their web site.

Damn i totally forgot that phishing was via spoof sites.

i remember getting an e-mail from E-bay once asking all these questions, like, date of birth passport number and car registration, i was like ehhhhhh i never entered those on sign up to e-bay, so i replied with very bad swear words in each field hahahahaha

I did something similar. It's good fun to do once. It''s a pity we can't do something to swamp them with useless information.