Phishing involves hackers posing as legitimate institutions in order to trick people into entering sensitive information. For example, a hacker may email you, posing as your bank system administrator, asking you to reset your password. A link is included in the email that directs you to a page that looks like the bank’s legitimate password reset page, including fields for the username and old password. When you enter your old password, the hacker gets access to what is actually your current password. They can then immediately log into your bank account without any detection.