Protect yourself against fraudulent emails, phone calls, and chat.
Get educated
What is email phishing?
Phishing is a method used by internet scammers who imitate real companies in email messages to entice people to share user names, passwords, account information or credit card numbers.
Internet scammers use sophisticated lures as they "fish" for users' private information. The most common ploy is to copy the look and feel of a major web page and use that design to set up a nearly identical page that appears to be part of the company's site.
Make sure you don't fall for phishing scams
- Be suspicious of any email, chat, or phone call that asks for your personal account information, such as user names, passwords, and account numbers.
- Be aware that Comcast will never ask you for password information over the phone, chat or email.
- Comcast will never ask for billing or payment information through email.
- Always make sure you use a secure server when submitting credit card information.
- To make sure you're using a secure server, check the beginning of the web address in your browsers address bar — it should be https:// rather than just http://.
- Comcast will never ask you to pay a large amount of money upfront over an uncommon payment method.
- To verify the legitimacy of any offers or promotions made by a caller, you can always chat with Xfinity Assistant.
- Check our internet security alerts site for news, updates, Comcast security alerts and top phishing scams.
Think you received a phishing scam email?
Follow the steps below so our abuse team can start an investigation:
- Copy the email, including headers, and paste it into a new email.
- Headers: The body (content text) of the email is preceded by header lines that show certain routing information of the message, like the sender, recipient, date and subject.
- Some headers are mandatory, such as the FROM, TO and DATE headers.
- Others are optional, but very commonly used, such as SUBJECT and CC.
- Make sure you copy all of these details to your new email.
- Please do not forward the phishing message: this will remove the email headers.
- Be sure to add the words "phishing email" in the subject.
- Headers: The body (content text) of the email is preceded by header lines that show certain routing information of the message, like the sender, recipient, date and subject.
- Send the email to our abuse team.
Follow these suggestions if you
- Responded to a fraudulent email: Immediately alert your bank and/or credit card company.
- Received spam that is phishing for information: Forward it to spam@uce.gov.
- Think you've been scammed: File your complaint with the Federal Trade Commission (FTC) at ftc.gov.
- Then, visit the FTC's Identity Theft Web site at consumer.gov/idtheft to learn how to minimize your risk of damage from ID theft.
- Want to learn other ways to avoid email scams and deal with fraudulent emails: Visit ftc.gov/spam.