<a href="http://real-link.bad/">Visible Link</a>
Did you click the links?
Did you look at the error messages and the URLs in your browser window? (You haven't given your browser permission to hide the URL, have you?)
Not that rogue html code isn't able to overwrite what's in the URL field, anyway. (What? it can? Woops. That's right. It can. Oh, dear.)
I guess you should never let anyone you don't trust write you an e-mail message in anything but plain text.
So, what should you do?
One thing that might help, if you are not into trying to read e-mail raw source text:
- Right-click the link and copy it. (Select "copy URL" or "copy link" from the pop-up menu.)
- Launch a text editor.
- Paste the URL into the text editor and look at it.
- Does it looks like it should?
- If you don't know what the URL should look like, look up the company or bank with your favorite search engine (google, or whatever).
- If it looks like a valid URL, paste it into the URL field in your web browser, and hit enter.
- web.mit.edu Massachusetts Institute of Technolgy's main pages
- home.byu.edu/home Brigham Young University's front door
- www.citi.com Citibank's primary pages
- www.paypal.com Pay Pal's primary pages
Look up the companies you work with. Pay attention to their URLs.
And never directly click the links in e-mail.
There are other problems with URLS that I didn't discuss above. You will want to read this, as well: