I just recieved two malware spams from fradulent return addresses, both with attachments that they claim are e-tickets. The worrysome thing is they reference an actual date and destination of one of my existing flight reservations. They did get a lot wrong, (Zone 2, are you kidding me???, and it was actually an award ticket with different arrival time). I know PNR's are publicly accessible, someone is scraping them and finding the associated e-mail address (which shouldn't be publicly accessible).