Just a simple question.
with text like
Dear Valid User,
Your Shaw.ca Account was recently signed in from a unknown Location, please Verify Here for verification to avoid account closure.
I forward these emails to Internet abuse etc. But, I wonder, if those are correct emails, can't Shaw identify the user and check whether the address was stolen or the user is abusing the service?
None of the users that use a shaw.ca address for phishing is among my contacts hence if they can't be legit (i.e. my address was captured from their compromised address book and they are unaware of it). Indeed, my email may have been harvested from compromised websites. BUT, the email I receive seems to come from a legit users. Was the latter compromised (i.e. address stolen and being used to send phishing attempts)? If so, is/she informed of it? How hard is it to see who in earth is firstname.lastname@example.org (and others) and if abused (as indicated by the text above) terminate or warn the user?
P.S. Clearly I did not click any of those links in the text. I have been at this for a long time and know how to be "streetwise". What is puzzling to me is people using shaw emails for phishing.