For those who respond in a haughty and/or mocking manner: just because you believe you'll never be taken in doesn't mean you should openly mock those who haven't had your Superior Intelligence. Those who know should rather teach those who do not know than mock them, shouldn't they?
As for the question of "noreply@...", some elements of response have been given above, but since I can't find the complete explanations, I allow myself to add a little more, hoping that those who read me will understand better (what follows might seem long, I apologize if I ramble too much).
Every email address takes the form "truc.muche@monsite.fr", which designates the account "truc.muche" managed by the site "monsite.fr". Your Internet service provider has surely provided you with addresses of the type "françois.dupond@free.fr", "justine.dupont@orange.com" or others.
The first part, which designates the account, may not be directly associated with a person: the address "admin@monsite.fr" can allow sending an email to the administrator of a website, for instance, to report a problem without providing their name to everyone, or "groupe-vtt-dordogne@yahoo.com" can refer to a mailing list to which several people are subscribed to discussion a topic of particular interest. There are also purely "technical" email accounts that no one directly uses, but which are managed by programs, for example, to manage registrations on a website, to automatically send commercial information...
In particular, when sending an email automatically, and not expecting a response, one can use an address called "noreply@monsite.fr". "No reply" means "no response" and is an indirect indication that a response is not desired, and that if someone tries to reply, no one will read their message. Generally, those who send such messages include in small print at the bottom that one should not reply directly to this email and indicate how to contact the individuals who originated the email (but I acknowledge that we rarely read the fine print, and sometimes it doesn't appear). Using a "noreply@monsite.fr" address is in no way an obligation, and does not necessarily mean that no one will read the email; it is just an extremely common practice on the internet.
As for banking scams: it must be recognized that the internet is filled with dishonest people. There are many interesting individuals, honest commercial websites, and warm, open discussion spaces, but there are also con artists, mafiosos, and petty thieves. In short, it’s like real life when you go out on the street. Except that, on the internet, you don’t always immediately see who is honest and who is not. A nice-looking website could be created by a company seeking clients or by a bogus company, while in real life, we usually distinguish between a legitimate store and a postal address in the Maldives, or between the Champs Elysées and a slum backyard.
There is no golden rule of the internet stating that one must be wary, that one should never trust anyone, that everyone is a potential terrorist/pirate/thief. It’s just about applying common sense rules and, when in doubt, stopping before taking risks. Among other things, this means not giving your credit card number on a site you don’t trust (personally, aside from checking my accounts on my bank's website, SNCF, and 2 or 3 other sites I know well, I don’t make any online payments), not following links received in emails from people you don't know, and not believing all the ads that come your way...
The list may seem long, but it generally comes down to "common sense". I acknowledge that when you are new to the internet, this "common sense" is not necessarily obvious... But it eventually sinks in. Always check, when giving an identifier or password, or a credit card number, that the site uses a secure connection (address starting with "
https://" rather than "
http://", note the additional "s").
Moreover, as mentioned above, you should NEVER reply to an email from your bank/eBay/PayPal or anything else that asks you to log in to verify your identity: these are fake emails, and the address written in the email, which you might be tempted to click, is surely that of a bogus site that will merely copy your identifier/credit card number for itself. A bank will NEVER send an email to one of its clients to verify their identifiers. eBay won’t either. No legitimate site would do that. Even if they claim that due to a minor technical incident, they need to check that your account is functioning well and ask you to log in "just to verify", don't do it. Send that email straight to the trash and don't think about it anymore (there's no need to report it to anyone; unfortunately, it wouldn't help). (If you want to learn more, the English term for this type of scam is "phishing", it should be on Wikipedia, I think)
We could list many more tips of this kind, but this message would end up being really very long...