“Or Maybe It’s Just a Malware Infested Serbian Honeypot” ⇥ notes.kateva.org

While I merely complained about the use of undetectable ad tracking tags used by AT&T and Verizon, “John Gordon” actually checked out the opt-out steps:

AT&T does have a great sense of humor though — here’s the opt out link you’re supposed to visit while on AT&T’s network:

AT&T Adworks – http://205.234.28.93/mobileoptout/

Yeah, an IP address. I think it’s legit, fwiw the footer says “AT&T’s intellectual property”…

Interestingly enough, AT&T has a support article on their website about phishing:

The good news is that you can avoid scams by looking for telltale signs that indicate when a site is fake or an email is phishy. The next time you are not completely confident that you are on a legitimate website or that an email you received is valid, check for these signs:

Uses an incorrect URL – If you are used to going to your bank via a regular address and the address of the site you land at is not the same name, you can be confident that you are not at the real site. Always double check to make sure that the site address is accurate. You can also hover your mouse pointer over a link in the email to verify that the link is directed to the same site that the email came from.

So, in short, be on the lookout for scams that look legitimate, and legitimate sites that look like scams. And it’s still a big mystery to some that people actually fall for this stuff.