That email from your power company—the one that looks like a billing statement—could be bogus. And if you click on the link, you could be in for a nasty surprise.
"Electric utilities across the country—from Florida to Washington—have reported customers being targeted by these malicious emails," said Jon Corley, with the Edison Electric Institute, a trade group that represents investor-owned U.S. electric companies.
The fake billing notice emails may arrive as simple text sent from the "Energy Billing Service" or more graphically pleasing HTML that includes the logo of a real utility, although not necessarily your power company. That should be a red flag that something's wrong.
PG&E, a big West Coast utility, recently warned that its logo was used on many of these scam billings.
(Read more: How the 'one ring scam' can cost you money)
"It's unacceptable that someone is trying to take advantage of our customers and others," PG&E senior vice president Helen Burt said in a statement.