caveman - 12:44 am on Oct 30, 2008 (gmt 0)

The most massive barrage I've ever seen from a single entity. Unusually good at getting through various spam filters too.

Things always to watch for:

1) If they don't identify you by account #, username and/or domain, it's 99.9% sure that they are spam/phishing. Your real account holders always make some attempt in emails to signal that they know who you really are.

2) As werty pointed out, look not just at the visible link but also at the code underneath, either by waving the cursor over the link and looking at the real link in the window bar (if it's displayed, usually on the window's bottom bar), or by viewing the source code.

The cleverest phishers usually use the real domain name as a part of the URI, often as a subdomain, in this case: enom.com.#*$!.com ... so don't be fooled by the subdomain/host looking like the site they're mimicking just because we're used to reading left to right.

Checking for the primary domain pretty quickly puts any doubts to rest.