A lot of spam and Phishing campaigns rely upon tricking the recipient into thinking they’ve received a billing error, from an otherwise legitimate source. The latest of these claim to be from ATT Wireless, and arrive with realistic sending addresses and subject lines, such as:
Subject: Your AT&T wireless bill is ready to view
From: “AT&T Customer Care” <email@example.com>
In reality, the sending addresses are spoofed, and these are instead sent by previously infected computers and hijacked servers, but that fact is not readily apparent to the typical email user.
What makes these types of emails so convincing is that the spammers are doing a much better job than they used to in terms of making these faked billing emails appear legitimate, such as this example we’ve seen a lot of lately: