I got a particularly well-executed phishing e-mail last night. It looked just like a Paypal e-mail, said all the right things, had no spelling errors, and even had links which showed the proper URLs until you moused over them and discovered something skuzzy in Hungary. I sent it on to Paypal, pondering how they choose their targets (I had just used eBay and PayPal for the first time in months a few hours before), and admiring the craftsmanship.

Because besides avoiding the usual pitfalls of spelling errors and blatancy, they had executed a master stroke. In their phishing e-mail they had included a stern warning about phishing e-mails. Marvelous.