Oh, and the site that nabbed his info? As an IT person, that really blew my mind how hard they worked to prop up a site that had even paranoid ME convinced. wow.....
I REALLY easy way to determine the site you are going to is fake, is to look at BOTH the URL in the email and the one you get to. If the URL is a shortened URL, and you end up at a web site that is NOT an HTTPS sight like https://www.cox.com/residential/home.html, then you should not be logging in because your info will be stolen. ALSO, since I used to work handling these calls for Cox, make sure you ALSO change ALL other passwords to ALL other accounts. On of the NASTY things these hackers/thieves do, is they will go through your email, checking for Amazon, EBAY, etc etc, and even if the pwd is different, it's linked to the email, go and select "forgot password", they send an email to the account that amazingly this gutterscum has access to and they can change the pwd, AND delete the emails associated. You won't know till you get a bill for 2500$ worth of stuff you didn't buy.
If there is EVER a question about an email, CALL Cox. Don't speak to the first tier, request escalation. Tier 1 isn't going to be able to help.
