Where phishing comes from
Phishing messages seem to be from legitimate organizations like PayPal, UPS, a government agency or your bank; however, these are in fact clever cons. The emails politely request updates, validation or confirmation of account information, often suggesting that there is a problem. You're then redirected to a fake site and tricked into entering account information, which can result in identity theft.
How to recognize phishing
You get messages asking you to reveal personal information, usually via email or via a website.