There is nothing Comcast can do about those who send out phish attempt mails. Neither can Cox, Charter, banks, ebay, Pay Pal, and all the other organizations which are phished.

As long as there are people who want YOUR info they will continue to send this stuff.

Please read this Comcast Email Phish or Legit? How to Tell (and rules for posting about your mail) clickable link.

It contains very useful information about mail that purports to be from Comcast.

By the time you get through reading it YOU will be an expert on HOW to know that the mail is a phishing attempt.

On the page I linked to is a link which has a list of the common phishing scams. The one you posted is currently #2 on that list.

Thank you for the info.  However, if Comcast is truly aware of the problem and seeks to provide a level of customer care that enables it's customers to troubleshoot these types of fraudulent activities before they become a problem… maybe Comcast could send out an email notice to its customers or post a notice on the homepage like many other sites, such as eBay, Citi, BAC, etc., notifying customers of this problem in advance.  I have no doubt that some customers have found out the hard way that these emails are NOT from Comcast.  Some proactive counter measures intitiated by Comcast woudl do much to reinforce its commitment to customer service.

I received a phishing email:

On Mar 15, 2012 Your First and Secondary email accounts has been marked for deletion.

To cancel this, please go to

Enter your PRIMARY User Name and Password, and from the next screen select NO from the DELETE YOUR ACCOUNTS option.



PLEASE DO NOT REPLY TO THIS E-MAIL. THIS E-MAIL ADDRESS IS USED BY COMCAST AUTOMATED SYSTEMS AND IS NOT MONITORED.



Best regards,

The Comcast Team

This is a totally false and phishing emial.   Don't respond to it.   Clicking on the link takes you to a false website that looks identical to Comcast.

I called comcast twice and the first time was told to forward the email to abuse@comcast.com.   I included an email tracker on the forward.   It was never opened.

I called comcast again and was told to forward the email to security@comcast.net.    Again I sent it with an email tracker on the forward.   It was never opened.

Apparently Comcast does not care about issues such as these with our email accounts.   It is impossible to find a contact on their website for concerns and issues and calling comcast doesn't do much better.    There should be an easily identifiable contact for security concerns with comcast internet and email.

LINKER, click on OPTIONS in your post, choose EDIT REPLY and REMOVE the link.  

 

IF YOU POST THE MAIL YOU RECEIVED DO NOT INCLUDE THE LINK. Many times the links are still active when posted. There are those misguided souls who will click the link just to see what it looks like! Most phishing sites are just that, but a few are also sources of malware. 

 

---

cr8vfish wrote:

 

Thank you for the info.  However, if Comcast is truly aware of the problem and seeks to provide a level of customer care that enables it's customers to troubleshoot these types of fraudulent activities before they become a problem… maybe Comcast could send out an email notice to its customers or post a notice on the homepage like many other sites, such as eBay, Citi, BAC, etc., notifying customers of this problem in advance.  I have no doubt that some customers have found out the hard way that these emails are NOT from Comcast.  Some proactive counter measures intitiated by Comcast woudl do much to reinforce its commitment to customer service.

---

I, and many others, do agree with you that there should be something on the home page about these types of mails. 

Unfortunately, even though it has been suggested many times Comcast refuses to do so.

It should be easier for customers to find that information. Currently one has to go searching for it putting the burden on the customer to find it.

All they have to do is put something front and center on the homepage that says something along the lines of

Comcast Phishing Scams with a DIRECT link to http://xfinity.comcast.net/constantguard/Alerts/#ThreatInfo and a direct link to http://customer.comcast.com/help-and-support/wireless-internet/phishing-scams/

As it is now from the homepage one has to

1) Click Security (hopefully they are intelligent enough to realize this is what they need to click)

2) When the Security page opens click Alerts (once again hoping that someone realizes this is what they need to choose)

As for the 2nd link I posted one does not find that information FRONT AND CENTER on the Help pages. In order to get to it you have to actually enter phishing in the help search bar. Again, this puts the burden on the customer to find that info.

They should also mention other methods to help determine the mail is fraudulent. Those methods are included in the post I made concerning how to tell.

These are simple and easy to do and make sense but Comcast does not believe in simple, easy and making sense.

---

linker wrote: ... In my case neither of my emails were "read" ...

---

You can't know that for sure. Private email systems can force read receipts to be generated, but for Internet mail, read receipts are only generated if the recipient wants to generate them.

For those who don't have Comcast as their homepage they may go there first to see if they can find the info.

Something similar to this should be on the page

In my first post in this thread I stated

 They should also mention other methods to help determine the mail is fraudulent. Those methods are included in the post I made concerning how to tell.

It should be easier for customers to find that information. Currently one has to go searching for it putting the burden on the customer to find it.

When searching everything is scattered around in various places:

http://xfinity.comcast.net/constantguard/Alerts/#ThreatInfo

http://customer.comcast.com/help-and-support/wireless-internet/phishing-scams/

http://customer.comcast.com/help-and-support/internet/comcast-verified-email/

I created the How To Tell posts in order to put ALL that info in ONE PLACE in order to educate people about these mails.

Unfortunately, the only place to read is here in the forum.

Comcast needs to step up to the plate and also put it ALL in ONE PLACE.

Also unfortunately the threads have now made their way down the topic listings and will not be seen on page one of the topic listings. One has to search for those.

If they were stickied more people would see them.

I used the "pointofmail" email tracking service to send both of those emails to Comcast.    The service returned a message that they were delivered, but to date none that they had been read.    I know with regular emails the recipient has to send a reply that the email was read.   With the service it is in the background.

---

linker wrote:

I used the "pointofmail" email tracking service to send both of those emails to Comcast.    The service returned a message that they were delivered, but to date none that they had been read.    I know with regular emails the recipient has to send a reply that the email was read.   With the service it is in the background.

---

They can confirm that an email was accepted by a recipient server. In general, that's not much more valuable than not getting a bounce when you use any ol' email service. Their other claims are mostly BS. Yes, with "web bugs" you can kinda be sure that an email was opened, but even that isn't guaranteed. It's possible that an email service could visit URLs in email to check for malicious content/trails, in which case  it would appear that the recipient opened the email when in fact they did not. Also, emails can wind up in odd places on the web (due to something done by the recipient), places where anyone could follow a link.

Any tracking requires cooperation by the recipient. If an email client doesn't fetch remote content (a quite common configuration these days) their methods are useless; the lack of a response does *not* prove that an email wasn't read... unless the definition of "read" includes fetching remote content. There's no reliable way for a third party to know what's going on with a user and his email, especially when trying to read anything into "no response".