I am in the IT field so this may be some overkill, however in the digital age I like to protect myself. This is legit, I confirmed the information in the header is associated with paypal, including the ipaddress associated with the email. When I clicked the link I confirmed in the source code it was not a phishing attempt, prior to logging in. Last, I logged into my PayPal on a separate page, then went back and clicked the link, with the security encryption in place from my initial log in, was the final confirmation. Once, the information was updated, it took me back to my account page. Hope this helps.
... View more