A flaw was found in Java which was publicly demonstrated last week, a new SPAM campaign has been found by a security firm, the subject of these SPAM messages are made to look like a real Microsoft e-mail marketing effort. "Important Changes to Microsoft Services Agreement and Communications Preferences"
The phishing links in the email can be seen by hovering over the link address, they are like allseasons***.us, radiothat***.com and easily many others. The key to your defense is before clicking on an email link, hover over it, make sure the link looks like the text that advertises it.
Users should update to Java 7 update 7 to protect against this flaw. The other option is Don''t Click on Suspect Links, hover over them, know where your browser is going to take you.