As an IT I understand that passwords in a website are actually encrypted so even the programmers or the websites should not be able to see your password at least.
...
This is not always true. It depends entirely on the website you are using and its owner.
The owner/developer is the one who decides how passwords are going to be saved on the database (plain text or encrypted).
As a user and without having access to the website's back end, there is no way to know how passwords are being saved.
I agree, but it is a good practice to encrypt the password as a programmer since you cannot really leak any information from your users, it is against the law in my country.
That is actually the problem since they are a phishing website they just want to get information so the programmer programs it that way to get information easily.