Unfortunately "phishing" nowadays is used to describe any kind of social engineering, including all variants of tricking the victim into executing malware on their machine.

U2F won't save you there, it will just make the attack a bit more annoying.