According to an article on The Register phishing is more than just popular. Again it touches former upper limits and reached a new record high in the second quartal of 2009.
Really hard to believe this technique still works after so many years telling people not to double-click mail attachments. It seems to be something completely different when only clicking once on a link. Very confusing.

Brands in the financial and payment services sectors continue to be the favourite targets for fraudulent emails that attempt to trick users into handing over their login credentials. They were the subject of four in five (80 per cent) of all phish attacks in Q2 2009. Elsewhere, attacks targeting the login credentials of social networking websites more than doubled between Q2 2008 and Q2 2009, increasing 168 per cent over the course of 12 months.

An analysis of the millions of URLs in fraudulent emails by MarkMonitor identified a shift in the phishing techniques used by fraudsters, with 351 attacks per organisation, on average, in Q2 2009. The US hosted half (50 per cent) of the sites associated with phishing attacks during Q2 2009.

MarkMonitor reckons phishing attacks are at a two-year high, contrary to some reports that suggest fraudulent email attacks are on the decline.

Original article here.