Telecom is New Zealand’s biggest telco and ISP, and is widely disliked for practices in the past which have relied on its size and muscle to push out the smaller competitors. Now, it seems, it can add email idiocy to its list of “achievements”, as an email to certain customers triggered pretty well every alarm there is for “phishing” attempts.
Phish-like features of the email include instructions to change passwords following new security measures, a request for "immediate action", the use of IP addresses and a website hostname — thr.esm.net.nz — that is not part of the Telecom domain. Users who visited the website listed in the email were greeted by a warning that its secure certificate was invalid.
The email was sent out to people listed as contacts for the Remote Office service, but asks the recipient to forward it to the “IT manager” or “administrator” in case the address is wrong. … The message also contained a URL with the recipient’s email address embedded, so as to track whether or not the person downloaded and read a PDF file.
[Via Juha Saarinen in Computerworld: Telecom email mistaken for phish attempt]