Scam of the day – July 4, 2016 – New Chase phishing email

by | Jul 3, 2016 | Scam of the day, Site Related

Phishing emails, by which scammers and identity thieves attempt to lure you into either clicking on links contained within the email which will download malware or providing personal information that will be used to make you a victim of identity theft, are nothing new.   They are a staple of identity thieves and scammers and with good reason because they work.  Here is a copy of a new phishing email that appears to come from Chase bank that is presently circulating.  DO NOT CLICK ON THE LINK.  Like so many phishing emails, this one attempts to lure you into responding by making you think there is an emergency to which you must respond.  As phishing emails go, this one is pretty good.  It looks legitimate.  The email address from which it is sent looks like a legitimate Chase email address instead of, as is so often the case, an email from a botnet that carries the email address of a person’s hacked computer hijacked and used to send out this type of phishing email.  The grammar and spelling is good, but as so often is the case, it is not directed to you by name and does not contain your account number in the email.  It carries a legitimate looking Chase logo, but that is easy to counterfeit. However, it also has an Uber logo at the top of the email which is extremely odd as Uber has nothing to do with Chase.

Dear Chase Online(SM) Customer

We have detected irregular activity on your account.So We Have Limited Your Account.
For your protection, you have to verify this activity before you can continue using your account.

Please Visit https://chaseonline.chase.com/Logon
to remove any restrictions placed on your account.

Reference Number: PP-184-107-163

Chase Bank – EP-MN-L20D – 200 South Sixth Street – Minneapolis, MN 55402
© 2016 Chase Bank . All rights reserved.

TIPS

There are a number of indications that this is not a legitimate email from Chase, but instead is a phishing email. Legitimate credit card companies would refer to your specific account number in the email.  They also would not use the generic greeting “Dear Chase  Online Customer,” but would rather specifically direct the email to you by your name.  As with all phishing emails, two things can happen if you click on the links provided.  Either you will be sent to a legitimate looking, but phony webpage where you will be prompted to input personal information that will be used to make you a victim of identity theft or, even worse, merely by clicking on the link, you may download keystroke logging malware that will steal all of your personal information from your computer and use it to make you a victim of identity theft.  If you receive an email like this and think it may possibly be legitimate, merely call the customer service number on the back of your credit card where you can confirm that it is a scam, but make sure that you dial the telephone number correctly because scammers have been known to buy phone numbers that are just a digit off of the legitimate numbers for financial companies, such as Chase to trap you if you make a mistake in dialing the real number.