Welcome to Xfinity Help & Support Forums
Find solutions, share knowledge, and get answers from customers and experts

New to the Community? Start here.

5,843,887

members

1,354

online

36,488

topics

Top

repeated phishing attempts despite CSA confirmations

ANSWERED
Frequent Visitor

repeated phishing attempts despite CSA confirmations

I report at least one email per day to abuse@comcast.net which CSA confirms as a phishing attempt. As an example (see attach) Comcast CSA has confirmed my previous reports of phishing attempts from mymedicare@subscriptions.cms.hhs.gov with links within the body to govdelivery.com. My question: what action has been taken against this known profile? How many emails with this profile have been blocked?
Accepted Solution

Re: repeated phishing attempts despite CSA confirmations

GovDelivery appears to be a regrettable but legitimate choice that CMS and many other government agencies have made to handle their high-volume email. It's a questionable practice, but you can't really call it phishing when an established company sends messages at the request of its clients.

 

For example, see http://www.latimes.com/business/la-fi-laz-social-security-email-20150320-column.html, which describes a similar SS and Medicare email sent by GovDelivery and containing links to GovDelivery servers:

 


... It tells recipients that "you may be able to use a new online service that helps people who receive Social Security benefits and Medicare have the information they need to file their tax returns."

But if you hold your cursor over the link to sign in to the website, you see a really long URL that begins with "links.govdelivery.com." ...

I contacted Social Security and asked about the email. Is it spam? Is it a phishing scam?

"This is a legitimate email," said Patricia Raymond, an agency spokeswoman. "Individuals who established a My Social Security account may see an electronic note ... sent to their personal email account." ...

So if you got one of these emails, you weren't spammed. It's Uncle Sam calling. ...


Also see https://www.huffingtonpost.com/entry/govdelivery-messaging-service_us_56425674e4b0364e0dbbe633.

View answer in context
Gold Problem Solver

Re: repeated phishing attempts despite CSA confirmations

GovDelivery appears to be a regrettable but legitimate choice that CMS and many other government agencies have made to handle their high-volume email. It's a questionable practice, but you can't really call it phishing when an established company sends messages at the request of its clients.

 

For example, see http://www.latimes.com/business/la-fi-laz-social-security-email-20150320-column.html, which describes a similar SS and Medicare email sent by GovDelivery and containing links to GovDelivery servers:

 


... It tells recipients that "you may be able to use a new online service that helps people who receive Social Security benefits and Medicare have the information they need to file their tax returns."

But if you hold your cursor over the link to sign in to the website, you see a really long URL that begins with "links.govdelivery.com." ...

I contacted Social Security and asked about the email. Is it spam? Is it a phishing scam?

"This is a legitimate email," said Patricia Raymond, an agency spokeswoman. "Individuals who established a My Social Security account may see an electronic note ... sent to their personal email account." ...

So if you got one of these emails, you weren't spammed. It's Uncle Sam calling. ...


Also see https://www.huffingtonpost.com/entry/govdelivery-messaging-service_us_56425674e4b0364e0dbbe633.

Forums Tips and Tricks:
Tagging Posts... See More
Discussion stats
  • 1 reply
  • 285 views
  • 0 kudos
  • 2 in conversation