Thanks for the heads up rizla. Sadly I think you may be correct.
I too have seen a couple of instances whereby I've been receiving similar phishing spam to specific email addresses, so I also know exactly where it's originating from. One of them is/was a smallish company I bought a router from years ago, and others are from website databases I've signed up to which have been hacked.
A friend of mine phoned me up on Friday all in a tizz because he'd got an email from eBay where someone was disputing a payment they'd supposedly made to my friend. I teamviewered into his PC to have a look at the email and its headers. It's certainly one of the most convincing phishing attacks I've seen. They even had some of his details.
The giveaway though was the link which had a .br TLD. It was certainly very cleverly done and thought out. I'm guessing that somewhere along the lines these particular scammers got his basic details such as name and email address from a hacked database.
. If someone has your name to go with the email address it makes it look so much more convincing.