Yahoo has put up a comprehensive page, plus related articles, about the dangers of “phishing” attacks and how to counteract them:

“When it arrives in your inbox, a phishing email will have one aim in mind: to get you to divulge your bank or credit card details. This is usually as part of a so-called security check or review of your account details, where the sender will act as though you’re simply confirming what they already know. You’ll be asked to provide your details in one of two ways: either by including them in a reply to the email or by clicking on a link in the email that takes you to a website that’s been made to look like that of the institution in question. Here you’ll be asked to log in or simply enter your details in a form on the page, at which point your account details are saved and the criminals have all they need to pose as you at the real website of your bank and transfer your money out.”

Read the whole article.