The Phish are usually easy to spot, because the link text in the message will point to www.paypal.com but when you move your mouse over the link, the indication at the bottom of the window will show you would actually be going to someplace like www.paypal.gripe.nl or some such non-paypal web site.

You received a spoof message. No one has compromised your PayPal account, just because you received a SPAM/Spoof message.

But PayPal does have a history of having been compromised before. I don't like their requirement to link in a bank account - I much prefer just linking in a credit card where the transaction is pretty well protected. If someone compromises PayPal and drains your bank account, that's going to be tough to dispute and get resolved, because the money is already gone.

Ken300D

__________________
--------------------------
1982 300D at 351K miles
1984 300SD at 217K miles
1987 300D at 370K miles