I just got two emails that looked valid, but led to BAD places - infested sites that would have tried to infect my system just by visiting them. I have all of my emails set to never render the html code, but to show me the actual contents of the email in plain text, so I see the actual links next to what they claim the links were.
One said it was to Fox news and had some incredible headlines - but all of the supposed links actually led to the same webpage - not at Fox at all.
The other was 'Breaking News' and had some really interesting headlines - also all went to the same site even though they claimed to go to various news sites.
So what this boils down to is NEVER click on any link in any email, and never open any attachment on any email unless you are absolutely positive it is safe - that is, you know who sent it and were expecting it - they told you to expect it.