Below is a screenshot of an email I received. It is clearly a fishing spam. Notice how official it looks. When I clicked the link (out of cureosity) my DNS took me to a warning page instead; so some network admins had already found it. What I expected to see was an authentic looking login screen. If I typed in my login cradentials the spammer surely would have used them for malicious purposes.