Received an email scam a while ago...
Barclays Web Bug Your Online Banking is Blocked We recently reviewed your account, and suspect that your Barclays Online Banking account may have been accessed by an unauthorized third party. Protecting the security of your account is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features. To restore your account access, we need you to confirm your identity, to do so we need you to follow the link below and proceed to confirm your information: www.update-access-account.co.uk/Index.html Thanks you for your patience as we work together to protect your account. Sincerely, Barclays Online Bank Customer Service *Important* Please update your records on or before 48 hours, a failure to update your records will result in a temporal hold on your funds. Barclays, N.A. Member FDIC. Equal Housing Lender © 2006 Barclays Bank Corporation. All rights reserved.
Run of the mill stuff, eh? Poor spelling, an embedded image so that the phishers could check if the message had been read if the recipient was using a client that permitted HTML, etc. The interesting thing is that the mail was sent to an address that's only ever been given out to one party: Fierce Panda Records, for a mailing list.
Let me explain. One of the advantages of a domain name is being able to set up multiple inboxes and redirectors. So you'd have email@example.com, firstname.lastname@example.org, email@example.com, etc. A good default policy is to open these as required and filter or block ones that you haven't authorised.
As well as helping to pre-sort incoming mail, this allows you to keep track of abuse — in this example, that Fierce Panda have no bloody security and their mailing list is available to spammers. This raises the question of why you'd trust any other business (such as online transactions) to them, so I'm rather sorry to see The Hot Puppies signed to such.