Seems a bit stupid if you send out a phishing email, with no phishing link in it 
That's because it's not a phishing email.
Could someone please confirm that the forum hasn't been hacked and that someone isn't capturing our new passwords. I don't use this password anywhere else, but I still would like to know.
And where is the valid bitcointalk.org pgp signature?
The forum database was hacked, but it's back in safe hands now apparently. Email addresses and password hashes were apparently leaked but not the actual passwords (though they could be cracked). I'd still advise caution but I think theymos will have everything sorted. If you don;t use your password or details elsewhere I'm sure you'll be ok.