Regardless, phishing sites are not too difficult to fall for either. Simply by performing a standard google search with the term "Bitcointalk" and some other refinement criteria will often show amongst the top entries links to the Bitcointalk site ending in "to" and not "org". That is a phishing site, and if you decide to perform a login there after the external search, your credentials will end up being seriously compromised and likely hacked in the short term. For searches, it is always recommendable to search using the "site:bitcointalk.org" particle.
The link provided by @DTalk leads to a very good guide by @sncc with some important security guidelines to consider.