News from abroad is that six people were arrested in the UK over bank phishing scam
The suspects apparently used spam emails and fake websites to trick up to 20,000 victims to hand over bank details, police claim. Police also allege that the suspects used spam emails and websites made to look like official bank sites to trick up to 20,000 victims out of their account and credit card details.

According to Information Age
Cybercriminals exploit technology's cutting edge. From social media to distributed computing, the cybercriminal underground takes full advantage of emerging technologies.
The arrested are believed to be members of an ‘Internet crime gang’ responsible for up to £3 million worth of online theft. "We have taken this action to shut down an organised criminal network running an online phishing and account take-over operation,” said Detective Inspector Colin Wetherill of the Metropolitan Police.

A recent report from security software vendor BitDefender (.pdf) highlighted a new style of phising attack in which a form asking the victim to enter their details is attached to a spam email, rather than hosted on a spoof website.

“As both webhosting companies and the anti-malware industry have allocated extensive resources to suspending or blocking phishing pages, cyber-criminals now focus on sending messages with the phishing form attached to the email,” it said. “Furthermore, since attachments are much easier to be analyzed, in a recent Visa phishing wave forms were encrypted.”