It took a good long while (18 months), but I finally got another phishing email to my work email account, one I'm not going to share here.

I give you the contents, with links disabled...

Merrill Lynch Enhanced Security Authentication

 

We have enhanced the Merrill Lynch Business Center security access to further safeguard access to your account information. Click on the hyperlink below and follow the prompts to answer and record answers to five personalized security questions. We may, in the future, ask you for answers to these questions when you log into the Business Center to ensure that only you are accessing your account information.

 

 

By clicking the link below and/or by using the Merrill Lynch Business Center website ("site"), you:

 

Login by clicking here: https://wcma.businesscenter.ml.com/

 

I. Represent and warrant that you are authorized to accept the Merrill Lynch Business Center Terms & Conditions and use the site on behalf of yourself and your employer and in doing so you are acting within the scope of your duties and

II. Accept the Merrill Lynch Business Center Terms & Conditions on behalf of yourself, agree to be bound by them.

Seems important enough, but upon opening the nuts & bolts of the message (closely observing the pointed-at address in a web client, or selecting "View Source" in Outlook), one can see that oversized address in the middle of the document does not go to where it states.

Of course, I didn't need to see the bogus link to know it was a blind attempt at identity theft. It's not that I'm just that good; I'm not a Merrill Lynch customer, just like I'm not a CitiBank customer 18 months ago.

-KIE