Jon, when I get questionable mail like that, I hover the mouse pointer over the link (not click). Then you should see where the link goes. Look at the part before the '.com', '.org', '.net' or whatever. If it's supposed to be from 'microsoft.com' but the link is to 'blahblahblah.ru' for example, then you know it's phishing. Check all the links because they'll occasionally add some legitimate links.
That can help sort a lot of it out. Don't know if it would work for people viewing on touch screens.
Sent from my Hallicrafters S-40 using morse code.