Scam of the day – November 12, 2015 – New Chase phishing email

by | Nov 12, 2015 | Scam of the day, Site Related

Phishing emails, by which scammers and identity thieves attempt to lure you into either clicking on links contained within the email which will download malware or providing personal information that will be used to make you a victim of identity theft, are nothing new.  They are a staple of identity thieves and scammers and with good reason because they work.  Here is a copy of a new phishing email that appears to come from Chase bank that is presently circulating.  This particular one came with quite good looking graphics and a Chase logo, but it is a scam.
“Confirmation of Recent Account Activity –
Unable to Contact You- Action Required
Your Account Ending in *46*

Dear Customer:

As part of our commitment to help keep your account secure, we routinely verify activity that seems unusual based on your general account usage. We called you to help us verify recent activity, but we weren’t able to reach you.  If you’ve already taken the required action about this recent activity, there’s nothing you need to do at this time. Otherwise, we ask that you Follow the next required action: •Log in to your account now and follow the instructions..Click here
We are here to assist you anytime. Your account security is our priority. Thank you for choosing Chase.

Sincerely,
Chase Fraud Department

Is your contact information current? Make sure we can reach you if we notice suspicious activity on your account. Update your information by logging into your account at Click here.

ABOUT THIS MESSAGE:
This service message was delivered to you as a Chase customer to provide you with account updates and information about your card benefits. Chase values your privacy and your preferences.

If you want to contact Chase, please do not reply to this message, but instead go to Click here. For faster service, please enroll or log in to your account. Replies to this message will not be read or responded to.

Your personal information is protected by state-of-the-art technology. For more detailed security information, view our Online Privacy Policy. To request in writing: Chase Privacy Operations, PO Box 659752, San Antonio, Texas 78265-9752

© 2015 JPMorgan Chase & Co. ”

TIPS

An indication that this is a phishing email is that the email address from which it was sent had nothing to do with Chase, but most likely was from a computer that was part of a botnet of computers controlled remotely by the scammer.  In addition, legitimate credit card companies do not refer merely to the last two digits of your account in emails, but instead refer to the last four digits.  They also would not use the generic greeting “Dear Customer,” but would rather specifically direct the email to you by your name.  As with all phishing emails, two things can happen if you click on the links provided.  Either you will be sent to a legitimate looking, but phony webpage where you will be prompted to input personal information that will be used to make you a victim of identity theft or, even worse, merely by clicking on the link, you will download keystroke logging malware that will steal all of your personal information from your computer and use it to make you a victim of identity theft.  If you receive an email like this and think it may possibly be legitimate, merely call the customer service number on the back of your credit card where you can confirm that it is a scam.