Although they look legitimate, which is why they fool people, the problem is in the links that are embedded in the message. Depending on your e-mail client and/or web browser if you hover the mouse over the link the true link beneath the text is often visible in the status bar.
For example you might think this link takes you to the BBC News webiste - http://news.bbc.co.uk/ but it will actually take you to Microsoft's website.
If the website the fake link takes you to looks like a genuine Square Enix page you'd be tempted to put your username and password in. After this it would probably show an error or perhaps a message saying they'll looking into the problem. However what you've actually done is given the hackers the details they need to login into your account.
For example you might think this link takes you to the BBC News webiste - http://news.bbc.co.uk/ but it will actually take you to Microsoft's website.
If the website the fake link takes you to looks like a genuine Square Enix page you'd be tempted to put your username and password in. After this it would probably show an error or perhaps a message saying they'll looking into the problem. However what you've actually done is given the hackers the details they need to login into your account.
