Just reading an anti-phishing page of my bank, and they have this gem towards the bottom:
Please Note: The email address spoof@national.com.au must only be used to report suspected spoof emails or hoax websites claiming to be from the National Australia Bank. If you believe your Internet Banking information has been compromised, or you notice a transaction you did not initiate, change your Internet Banking password immediately and contact the Internet Banking Support Team via the details below:
This is after they have plastered the aforementioned email address all over the page a previous two times. Are they expecting the page skimmers the spammers use to abide by this directive?