PHISHING ALERT! PHISHING scam email from Wells Fargo Customer Protection Center aclose@purdue.edu www.largeprintlondon.co.uk/deltacleaning/

DO NOT CLICK ON THE LINK IN THIS EMAIL and DO NOT ENTER ANY INFORMATION ON THE WEBSITE IT TAKES YOU TO!  This email IS NOT FROM WELLS FARGO and the link DOES NOT TAKE YOU TO THE WELLS FARGO WEBSITE!  The link takes you to http://largeprintlondon.co.uk/deltacleaning/wp-content/themes/twentythirteen/images/headers/red.php and is PHISHING for your information!

Originating IP: 41.246.150.69
Originating ISP: Telkom Internet
City: Johannesburg
Country of Origin: South Africa

from: Wells Fargo <aclose@purdue.edu> 
to: 
date: Thu, May 19, 2016 at 1:50 PM
subject: Please Upgrade Your Preference security Update
mailed-by: purdue.edu

Wells Fargo Customer Protection Center

We've detected something unusual about your Wells Fargo billing information. 1.To help keep you safe kindly click   VERIFY ME NOW
After you have successfully enter your billing account details, your billing information will be updated automatically.
Thank you for choosing Wells Fargo.

Regards,

Wells Fargo

From the HTML of the email:

<A style="FONT-SIZE: medium; COLOR: rgb(17,85,204)" href="http://largeprintlondon.co.uk/deltacleaning/wp-content/themes/twentythirteen/images/headers/red.php" target=_blank data-saferedirecturl="https://www.google.com/url?hl=en&amp;q=http://sciencesinfirmieres.tn/libraries/fof/red.php&amp;source=gmail&amp;ust1463508935595000&amp;usg=AFQjCNFph145p-avVA1e837BBhiXsrB7YQ">VERIFY ME NOW</A>