One way the Bad Guys sucker people in is by hacking into a legitimate company or organization web site and create some web pages and files for their own use.
Many people on the web can afford a fee to get on the Internet with a web site but most cannot afford the protection that is required to keep it from being hacked or even hijacked. One major bank spend hundreds of millions to protect their web site only to have card member's information lost yet claimed no responsibility for the release of names, e-mail addresses and other information.
So let's look at this one example of a likely attack against you.
Sun 6/28/2015 11:09 PM
Re:FW:6/29/2015 4:09:25 PM
Ways to spot the red flags in the above:
So you get an e-mail from an unknown person in Brazil using the website of a television station with a directory name and filename that look very questionable. It would be interesting to know how many people clicked this anyone because someone sent it to them so they clicked it.
Depending what was in that file could cost you some garbage on your computer all the way up to finding your system was "deep fried" by destructive code and now you are left with unaccessable files on an expensive lightweight boat anchor you once called your computer.
WHEN IN DOUBT call the person by phone and confirm they sent it. If you can't call them do not click on the link or open any files.