That's kind of funny that the guy fell for an easy phishing email, just double-checking that link would prevent that one so easily. Awareness is definitely key.
I was absolutely surprised he clicked that link, even when he knew that he was currently being hacked.
remember, the domain was only one letter off. That being said, I am surprised myself too.
That is why, even with an email that I know is legit, I hover over links and read the real link in the pop up. If they don't match I don't click. I also advise, and practice, that if you get an email from a bank, utility company, hosting company, etc. especially those talking about security changes, don't click on the links in the email. Instead, use a browser and type in the known, correct address to their homepage or do a search for them and go that way. If the email was legit it is usually easy to find a link on their homepages to do what the email advises.