There are affiliate links on this page.
Read our disclosure policy to learn more.
Translate this page to any language by choosing a language in the box below.
AT&T - Your online bill is ready to be viewed Email Scam - A Scammer is Phishing for Your Identity
Phishing and Vishing Identity Theft Scams
The AT&T - Your online bill is ready to be viewed Scam
Redirects to spoofed (Fake) website: www.claudioalvessemcensura.com''
You may have received an email like the one below that looks very authentic, like it came from AT&T, or a phone call about the same subject. It is an attempt to get you to enter confidential information (typically a social security number, name, address, bank account information, etc., to allow the scammers to steal your identity and open credit cards in your name.
This email was not sent by AT&T; AT&T is a victim as well. This is referred to as spoofing (making a fake email that looks legitimate, "phishing" (when by email) or "vishing" (when by telephone). If you receive an email similar to the one below, DO NOT click on the link, and do not enter any information on the forms there.
The website that the link leads to is a spoof; a fake website, not created by AT&T. It goes to www.claudioalvessemcensura.com, not AT&T! When you enter the information they ask for, you will simply be handing the thieves the keys to your bank accounts. That is how spoofing, phishing and vishing works.
Remember, no reputable business would send you an email or a phone call requesting your personal account information. Any such email you receive asking for this information should be considered phony and brought to the attention of the business being 'phished'.
Anytime you need to go to a website for your bank, credit card companies or other personal, financial or confidential information; do not follow a link in an email; just type their address in your browser directly (such as www.AT&T.com )
Below are actual phishing emails that started circulating in early 2008. We have put a warning over the links to the phisher's website, which is www.claudioalvessemcensura.com''
It is possible that the owners of the website (www.claudioalvessemcensura.com') are not involved, and that their server has been hacked, but the fact remains that this is the address the scam goes to.
----- Forwarded message -----
Your online bill is ready to be viewed
Dear Respective Customer,
A new bill for your AT&T services is prepared.
Any operations completed after your bill period expires will not be shown in the bill amount listed directly below. If you have made a recent payment, please refer to the current balance on the Account Overview and the Bill & Payments pages.
Service
Account ending in
Bill Amount
Due Date
Home Phone
954
$902.65
02/19/2013
Log in to online account management to view your bill and bill notices, maintain your email account or make a payment. If you are not registered for online account management, you must do so to view and print your full bill and bill notices at www.att.com/managemyaccount.
Log in to online account management to view your bill, maintain your email account or make a payment.
Thank you for choosing AT&T. We value your business and look forward to serving you!
Thank you,
AT&T Online Services
www.att.com
Contact Us
AT&T Support - quick & easy support is available 24/7.
Moving Soon?
Stay connected with AT&T. Visit us online at att.com/move.
AT&T Online Services
Get more time to do what you want. What would you do?
Show me how
Automatic Payments
Save time and pay your monthly bill automatically!
Special Offers
Visit our Special Offers to check out our best promotions.
Online Information
AT&T Community
RepairHome Phone
Special Offers
PLEASE DO NOT REPLY TO THIS MESSAGE
All replies are automatically deleted. For questions regarding this message, refer to the contact information listed above.
2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual Property and/or AT&T affiliated companies. All other marks contained herein are the property of their respective owners.
Privacy Policy
Where did the links go to?
The links embedded in this email went to the following urls (obviously, not to AT&T) which proves this was a spoofing/phishing scam:
- http://www.claudioalvessemcensura.com.br/wp-content/themes/toolbox/atrdrs.html
What is Phishing?
Phishing is an attempt by an individual or group to solicit personal
information from unsuspecting users by employing social engineering techniques.
Phishing emails are crafted to appear as if they have been sent from a
legitimate organization or known individual. These emails often attempt to
entice users to click on a link that will take the user to a fraudulent website
that appears legitimate. The user then may be asked to provide personal
information such as account usernames and passwords that can further expose them
to future compromises. Additionally, these fraudulent websites may contain
malicious code.
Learn More About Phishing
The following documents and websites can help you learn more about phishing and how to protect yourself against phishing attacks.
- Avoiding Social Engineering and Phishing Attacks
- Protecting Your Privacy
- Understanding Web Site Certificates
- Anti-Phishing Working Group (APWG)
- Federal Trade Commission, Identity Theft
- Recognizing and Avoiding Email Scams
Methods of Reporting Phishing Email to US-CERT
- In Outlook Express, you can create a new message and drag and drop the phishing email into the new message. Address the message to phishing-report@us-cert.gov and send it.
- In Outlook Express you can also open the email message* and select File > Properties > Details. The email headers will appear. You can copy these as you normally copy text and include it in a new message tophishing-report@us-cert.gov .
- If you cannot forward the email message, at a minimum, please send the URL of the phishing website.
* If the suspicious mail in question includes a file attachment, it is safer to simply highlight the message and forward it. Some configurations, especially in Windows environments, may allow the execution of arbitrary code upon opening and viewing a malicious email message.
For more information about phishing, see
this page.
For a comprehensive list of national and international agencies to report scams, see this page.