It can be that the hyperlink itself was disguised. Meaning even if the email and supposed hyperlink match, the phishing is already done/embedded in what you might call the true link. There are a few easy ways to track that. One of them is to hover over the link (don't click the link!!) and you will see the TRUE link. Another one method is to view the real page/mail source. In example in MS Outlook web interface right-click the email and click view page source/info. Scroll around and maybe use the search function to find the email or hyperlinks and whatnot. I used to receive like a 100 Blizzard WoW related phishing attempts a few years back, even though i never activated WoW on my Blizzard account. Tracked down the true link and emails, reported it and never received them again.
The fact that you were auto-logged in after just clicking the link is already suspicious. Anno nu, or in English, nowadays it's already a sign that somethings wrong. Any company (CIG incl.) that do make use of this has either very low standards or never really cared. It's easy to setup a proper login page with permissions... I highly recommend to visit this support page https://support.robertsspaceindustries.com/hc/en-us/articles/115013171387-My-account-was-hacked- , give it a good read so you know what kind of questions you might expect and what kind of info you can give them straightaway. Afterwards press "Submit a request button" at the top of the page if you cannot sign-in to your RSI account and contact support.
Oh and ... :
Password - Change your password immediately!
2FA - activate 2FA on your account if you haven't already. Even if people manage to get your account, they would still need the codes. Of course if someone really wants you they will find a way, but 90% of this kind of attempts is just "Oh 2FA? lets move on to the next..." and not worth the extra effort. If you already did? Then reset your 2FA recovery codes, better safe than sorry as your account might've already been compromised.