remediating phishing

i dont know if big fat rich companies really do anything about this stuff. but i forwarded that phishy email i got a few days ago to bank of america, of which im a member. they sent me this nice email with 6 "easy clues" to determine if in fact, its a phishing scam. lets review:

Stay safe from Phishing: Easy clues to help you keep your personal information secure.

The main goal of a phishing email is to get you to a site where you will provide your personal information. With these basic, but powerful, clues, you can easily recognize the threat and ensure the safety of your identity and finances.

1. Does the email ask you to go to a website and verify personal information? We won't ask you to verify your personal information in response to an email.

yes, check.

2. What is the tone of the mail? Most phish emails convey a sense of urgency by threatening discontinued service or information loss if you don't take immediate action.

urgent tone, check.

3. What is the quality of the email? Many phish emails have misspellings, bad grammar, or poor punctuation.

definitelycheck.

4. Are the links in the email valid? Deceptive links in phishing emails look like they are to a valid site, but deliver you to a fraudulent one. Many times you can see if the link is legitimate by just moving your mouse over the link.

[...]data-exchange.co.tz[...] ummm...check

5. Is the email personalized with your name and applicable account information? Many phish emails use generic salutations and generic information (e.g. "Dear Customer" or "Dear Account Holder") instead of your name.

"dear bank of america client" check. no account info. double check.

6. What is the sender's email address? Many phish emails come from an email address not from the company represented in the email.

noreply-mail@google.com. check. checks on every account. hopefully you learned something today.