Reproduced below is a copy of an Xfinity phishing email, sent to me by a Scamicide reader that uses the common ploy of indicating that there is a situation that requires your immediate attention. The version sent to the Scamicide reader contained the Xfinity logo, however it is a simple matter to counterfeit a company logo. Comcast uses the Xfinity name for its consumer cable television, internet, telephone, and wireless services. There are a number of telltale flaws in this particular phishing email. The email address from which it is sent has no relation to Comcast. In addition, the email contains grammatical errors in the second sentence. Poor grammar is often found in phishing emails, many of which originate in country’s where English is not the primary language although more sophisticated non-English speaking scammers are able to use AI to make their grammar correct.
Here is the text of the phishing email. I have removed the link which the scammers instructed the recipient to click on to confirm the account.
From: xxxxxxxxx <rftmhue@demotqd.mostlandl.com>
Date: August 23, 2025 at 1:16:18 PM EDT
To: xxxxxxx@comcast.net
Subject: Comcast:_#66202918 – Suspension:_August 23 2025 3:_37
Action Required! Your recent email are pending, because your account is missing some information we need to collect to comply with our terms. If you do not confirm your account will be lost all our service. To restore normal received/delivery email please take a moment this is only takes under 5 minutes:
Help Support Team
Comcast will occasionally send you service-related emails to inform you of service upgrades or new benefits.
TIPS
Obviously if you do not have an account with Comcast you know that this is a phishing scam, but even if you do have an account with Comcast as I indicated above there are a number of indications that this is not a legitimate email, but instead is a phishing email. Legitimate companies would refer to your specific account number in the email. They also would specifically direct the email to you by your name.
As with all phishing emails, two things can happen if you click on the links provided. Either you will be sent to a legitimate looking, but phony webpage where you will be prompted to input personal information that will be used to make you a victim of identity theft or, even worse, merely by clicking on the link, you may download keystroke logging malware that will steal all of your personal information from your computer or smartphone and use it to make you a victim of identity theft. If you receive an email like this and think it may possibly be legitimate, merely contact Comcast at the telephone number that appears on your bill to confirm that it is a scam.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and click on the tab that states “Sign up for this blog.”