Follow the simple rules, do not give out usernames, password, e-mail etc. The idea behind phising is simple, I would send you an E-mail saying I am xxx from your bank and we see some weird activity in your account please send me the following so I can confirm its you, bank information, name, address etc. Just don't reply to them. Also be aware of what you download, a lot of stuff out their has keyloggers, and other programs that will log and report back what you are doing on your computer. A really good place to get more information on anti fraud is any bank website aka wellsfargo.com they have a link for prevent fruad and some pretty good guidelines.
Also if you are unsure in anyway shape or form do not follow the instructions of the E-mail call your bank, ebay, website whatever it may be on the phone and explain what you see. Much easier for them to answer a quick qustion then try and restore your idenity.