Re: Who is to blaim for being taken by scammers?
"The return address is noreplay@overweeningly_important_bank.co.uk so you can't reply to check."
That's not how you should be checking anyway. What you should do is call up the institution that purportedly sent you the email (look up the number yourself, don't use the one in the email) and ask them about it.
Or do what I do and ignore and and all emails from banks, etc. Any of those institutions that I'm doing business with already have several other ways to contact me, and if it's really important, they'll be using those. And, for my part, every bank I do business with explicitly says that they'll never reach out with email for important business, so if you get one, it's automatically a scam. That's a policy that I am entirely on board with!