- #1
- 67,059
- 19,878
I managed to avoid a scam/hack over the last couple of days, but it was close. It might be good if we post similar hacks that we've avoided, in order to remind others of things to watch out for.
I received a text a couple days ago from Xfinity (who we use at home for Internet and TV) saying that if we wanted to keep using Xfinity On Demand, we needed to upgrade our cable modem, and the new equipment would be provided free of charge (not that strange, since my wife does use that service and we are long-time users of Xfinity). The text had a link to click for more information.
Of course I didn't click the link yet, even though the text looked totally valid. I mentioned it to my wife, and mentioned that I'd check our online Xfinity account to see if it also mentioned this issue in our messages.
A day later before I could check our online account, I got another text from Xfinity saying that the equipment had shipped (WITW), and would be delivered the next day. The next day I got another text saying that the equipment had been delivered, and "Let's get started!"
I checked all the normal delivery places (porch, mailbox, etc.), and no joy, so that increased my suspicion even more. I had an issue with the real Xfinity website over the past couple of days trying to pay our bill using 2-factor authentication, but their texts with the authentication numbers weren't coming through...
So in the final analysis, it looks like this scammer using the Xfinity source domain (spoofed) had caused my cell phone company to block all texts from Xfinity, including valid ones. It took several hours online with my cell phone provider to straighten this out, and give me access to the Xfinity texts again (at which point I got like 20 queued up texts from them).
So the familiar lesson from this is don't click on a link in an e-mail or text, even if it looks like a valid source. Go to their trusted website independently to look for the same information. Lordy.
I received a text a couple days ago from Xfinity (who we use at home for Internet and TV) saying that if we wanted to keep using Xfinity On Demand, we needed to upgrade our cable modem, and the new equipment would be provided free of charge (not that strange, since my wife does use that service and we are long-time users of Xfinity). The text had a link to click for more information.
Of course I didn't click the link yet, even though the text looked totally valid. I mentioned it to my wife, and mentioned that I'd check our online Xfinity account to see if it also mentioned this issue in our messages.
A day later before I could check our online account, I got another text from Xfinity saying that the equipment had shipped (WITW), and would be delivered the next day. The next day I got another text saying that the equipment had been delivered, and "Let's get started!"
I checked all the normal delivery places (porch, mailbox, etc.), and no joy, so that increased my suspicion even more. I had an issue with the real Xfinity website over the past couple of days trying to pay our bill using 2-factor authentication, but their texts with the authentication numbers weren't coming through...
So in the final analysis, it looks like this scammer using the Xfinity source domain (spoofed) had caused my cell phone company to block all texts from Xfinity, including valid ones. It took several hours online with my cell phone provider to straighten this out, and give me access to the Xfinity texts again (at which point I got like 20 queued up texts from them).
So the familiar lesson from this is don't click on a link in an e-mail or text, even if it looks like a valid source. Go to their trusted website independently to look for the same information. Lordy.
Last edited: