Who knows which DAPP authorized this fake USDT?

Today I saw an unfamiliar transaction record in my wallet; it should be a fake token. But the strange thing is that the form is my wallet address, and I also paid the gas fee.

I checked the browser, and it's a phishing contract. I'm curious how it got my authorization? What is the principle behind it?