Scam email to my Comcast email addresses

@XfinityDemitrius​ Received another email from my Comcast email address. One that I gave to Comcast and Comcast only and use nowhere else and gave to no one else.

* It contains my full name.

* It's obviously a scam .

* It says we have received your order but I did not place an order.

* It says my order has been auto renewed which doesn't make sense if I placed an order.

* Says my bank account has been auto debited but I never use my bank account to pay for things.

Was there a time Comcast was preached and gave free McAfee credit monitoring? If so one of your partners is a possible source of the email stealing.

Part of the email...

Dear (my name)

We have received your order.
We are much obliged to inform you that your order has been auto-renewed. We have charged you an amount of $298.99 for McAfee® Total Protection.
You can call our customer service team for a refund- +[Edited: "Personal Information"]
-----------------
Notes:
1. Your account has been auto-debited and the charge will appear on your bank account in the next 24 hours.
2. Please retain the copy of Invoice as the proof of your service for 1 year. If you have any questions or queries about your order then see the help document!

Steve [Edited: "Personal Information"]
Billing Team
+1-[Edited: "Personal Information"]

Thank you so much for getting back to us about the Email concern, @user_a84c61! We have a dedicated team that handles Emails like this and you can report the Email here so they can investigate it further. 

@XfinityPeterH​

I called the Comcast Security Assurance Team and they assured me my account was safe because I have MFA when I log in. While that's great, I don't think my information was compromised there. They also had me send them copies of the emails. I appreciate their help but unless someone is really looking into this, I believe this will just snowball from here.

I suspected this is something larger. It might not even be on Comcast's radar yet. All I know is that it is not a coincidence and I bet if more people checked, they would see that they are receiving targeted spam through the email account used for their Comcast account.

@iklopez501
Thanks for the update and letting us know your experience. Have you followed up with the CSA team, did they provide you with a ticket number, did they educate you on marking these emails as spam to report them? 

@iklopez501​ There is definitely something going on and Xfinity won't admit it or perhaps doesn't even realize it. My favorite is when I call to report something like this, do not get the promised call back and call again in the future to be told nobody (including me) has ever notified them of this before.

This is not the first time I've reported this type of thing to various companies both large and small and none of them  pay any attention. Most people use one email address and don't know where scammers get their address. Those few of us who use unique addresses given to one and only one company do know and we are the first line of defense and nice enough to spend time notifying these companies who deny or don't care. 

They also can't explain how information in their possession only is being used by scammers. Again, in my case, it's two different addresses both used by scammers for the first time this week.

I didn't leak these two addresses and none of my other many unique addresses have been targeted so anyone who can think logically can put two and two together. It's not a coincidence.

@user_414f92 Hello, and thank you for taking the time to reach out. I am sorry to hear you got a confusing email and I can understand how this would be concerning. Have you also reached out to our CSA team for further guidance like we have advised others to do? 

Hello @iklopez501 ! Thank you so much for keeping us up-to-dat on everything going on! It's wonderful that you've already touched basis with our Comcast Security Assurance Team, and these experts are the best folks to talk with about this situation. We do take incidents like this very seriously,  and will do all we can to ensure that this is resolved and taken care of for you. For future refence the CSA Team can be reached using the info below. 

https://internetsecurity.xfinity.com/help/report-abuse

• Business Hours: 6:00am - 2:00am EST, 7 days a week
• Contact: 1-888-565-4329

@iklopez501​ After the things Comcast has done to me I know the abysmal mess they are but I always try to be reasonable, rational and fair. In this case, I don't see Comcast did anything wrong. Scammers spoof their caller ID and randomly call people. Sounds like that's what happened to you. Since you didn't say they had information only Comcast could know, is seems something like this is out of Comcast's control and they didn't cause it and there is nothing they could do about it. In my (and other's cases) the scammers had information given ONLY to Comcast so that information would have most likely come from or have been taken from Comcast with or without their knowledge.

It's good you were aware enough to be suspicious and question things. Too bad more people aren't which is why scammers continue.

@user_a84c61​ 

I feel your pain. I still receieve these emails and I 100% KNOW something is up and it's originating with Xfinity. Not only do I only use this email address for my xfinity account but for whatever reason Xfinity dropped the last letter of my first name and ALL the spam emails that I receieve, address me by that name. It's such a no brainer for me. Name and email were compromised by xfinity. 

Hi, @iklopez501. Have you contacted our CSA (Customer security assurance) team yet? If you think your account was compromised, that's the first team I would recommend.