URL spoofing is the process of creating a fake or forged URL which tries to mimic a real and secure website. A URL spoofed website might look exactly like the intended target, but it actually is on a different domain and can be operated by malicious actors.
Hackers create these fake websites with the aim of stealing your personal information such as emails, logins and passwords. A user might be directed to these websites by clicking on a false link. The hacker might even have a stolen HTTPS certificate to add authenticity to the fake site.
So how should you protect yourself?
Mainly, avoid clicking unfamiliar links, particularly in emails. Hover your mouse over the link to check if the URL is a valid one or not.
You can also use a link checker, like this one Google's Transparency Report. Copy and paste any suspicious URLs into a link checker to validate it, so you can browse safely.