As usual, blame somebody else
Typical, blame the brand. It's not the user's fault that they are stupid enough to fall for these emails.
My housemate almost did. Apparently he got an email (it even said "don't give information out from emails") saying to verify his details. So he promptly went to the site, luckily for him it had already been taken down, so he called the bank to complain.
I think he felt a bit thick when I said "I can't believe people still fall for these" (this was before I realised he had).
GMail is also a bit of an issue, as it executes javascript in mails. I explained that he should always hold the mouse over the link, and check that it matches anchor text. In this case, there was onmouseover that stopped the status bar showing the link location. Javscript really should be stripped from emails displayed in WebMail apps.
Of course, he had been using Firefox instead if Exploder 7, this wouldn't have been an issue, as the window.status cannot be set using Javascript (by default).
And finally,
Thank you, thank you, thank you, thank you, thank you, thank you, thank you El Reg for adding a Remember me