Phishing is an attempt to steal user's personal information like usernames, passwords and credit card details by disguising as a legitimate entity through electronic communications like emails. Some common tactics used in phishing include impersonating real companies, copying company names and employees, using visually similar websites to real businesses, and promoting gifts or account issues. Users can help prevent phishing by being cautious of unsolicited emails, not clicking links in emails and instead typing URLs manually, keeping computers secure with antivirus software and updated systems, only entering sensitive data on secure websites, periodically checking accounts, and being wary of requests in unexpected languages.