Phishing Example
Real Email
The email shown below appeared on Monday, Sept. 6, 2010 in many mailboxes. It purports to be from PayPal and asks the user to 'confirm that your account was not stolen'. Of course, as soon as you confirm, your account will be stolen!
Yellow highlights mark the text that the red text annotates. 
If you click on the 'Verification Form', you will see the perfectly legitimate-looking web page
below. Only the form submission button ('Agree and Continue') is malicious; all the rest of the
links are legitimate Paypal and related links. The only way to see the target of the submission
button is to read the HTML code of the page (which is something hardly anyone does!). 