“I’ve been chiding PayPal for years about their phishing-lookalike emails. They’ve taught an entire generation of online-banking customers that it’s OK to log on to financially sensitive accounts using links sent in email messages.
Actually, PayPal’s email marketing team is starting to look more and more like “spammers in expensive suits” — to borrow Cringely’s phrase — and their scummy techniques are rapidly becoming indistinguishable from phishing.”
Leonhard acknowledges that other financial firms persist in the same behaviors, but blasts PayPal specifically for the example it sets and the influence it exerts on huge volumes of customers.
Heads up, all bankers: resist the temptation to embed hot links to logons. It might seem a kindness and convenience to customers, but enabling this bad personal security habit increases the likelihood they will ultimately be netted by phishers.