Here’s a security tip. Never, ever log into any URL that has been emailed to you. Never.
Always go directly to the URL you have bookmarked (for your bank, let’s say), and log in there.
One of the most common scams I see nowadays is scumbags sending so-called “HTML mail” to their intended victims, and making that so-called “HTML mail” look like an official email from someone the victim does business with (eBay, PayPal, and various banks are the most common spoofed emails). In this so-called “HTML mail” there will be a Login button, or a what appears to be a web address. However, if you look at where this address actually goes, it goes to some scumbag piece of filth’s server, typically in China or Romania but it could just as easily be in Idaho, who then grabs your login and password and rob you of everything you have in that account, and then they sell it online to other scumbag pieces of filth on underground web sites.
There are two things you should learn from this.
1) So-called “HTML mail” is EVIL. Don’t send it. Don’t read it. Disable it in your email client if you can.
2) Never, ever log into a URL that has been emailed to you. Never, ever.