If you receive an e-mail that looks like it is from Blizzard and informs you your wow account password was recently changed and asks you to login to the online recovery site if you did NOT change it : it's an attempt to grab your password.
The e-mail looks very legitimate and even sends you to the real wow web site so you can use the real password recovery tool from Blizzard.
How they exactly do it I don't know, but there's 2 things that give it away :
Spelling error :
"we recommend you Login verify your password"
email x-header : Return-Path: <email@example.com>
Google on that email address takes away any doubt.
I think it's a fairly new one as I have not been able to find any reference on Google about it.