Chase is a popular target for this type of phishing email because it is one of the largest banks in the United States. Like so many phishing emails, this one attempts to lure you into responding by making you think there is an emergency to which you must respond. As phishing emails go, this one is pretty good. It looks legitimate and the version appearing in your email comes with a legitimate appearing Chase logo. As so often is the case with these type of phishing emails, it does not contain your account number in the email nor is it personally addressed to the receiver of the email, but merely uses your email address. This particular phishing email was provided by a loyal Scamicide reader.
Here is a copy of the Chase phishing email presently being circulated.
Chase Online® Important Account Activities Notification
Recently, we observe unexpected activities or updates on your account that we believe may be unauthorized. For your protection, we have temporarily restrict use of this account until you verify the activity; you will not be able to utilize the ATM/Debit card linked to this account for withdrawal or purchases until your account is verified.
Verify Your Chase Account
Thank you. We appreciate your banking with us.
Chase Online Customer Fraud Protection Service.
Please do not reply to this automated email. To ensure a prompt response send a secure email.
There are a number of indications that this is not a legitimate email from Chase, but instead is a phishing email. Most notably, the email address from which this phishing email was sent has no relation to Chase. Most likely it is part of a botnet of infected zombie computers used by scammers to send out such phishing emails. In addition, there is a grammatical error that is not uncommon in such phishing emails particularly in instances where the email may originate from a country where English is not the primary language. It is also important to note that although the email contained a legitimate appearing Chase logo, such logos are very easy to counterfeit. As with all phishing emails, two things can happen if you click on the links provided. Either you will be sent to a legitimate looking, but phony website where you will be prompted to input personal information that will be used to make you a victim of identity theft or, even worse, merely by clicking on the link, you may download keystroke logging malware that will steal all of your personal information from your computer or smartphone and use it to make you a victim of identity theft.
If you receive an email like this and think it may possibly be legitimate, merely call the customer service number where you can confirm that it is a scam, but make sure that you dial the telephone number correctly because scammers have been known to buy phone numbers that are just a digit off of the legitimate numbers for financial companies, such as Chase to trap you if you make a mistake in dialing the real number. Alternatively you can go to http://www.chase.com to check on your account.
For those of you receiving the Scam of the day through an email, I just want to remind you that if you want to see the ever increasing list of Coronavirus scams go to the first page of the http://www.scamicide.com website and click on the tab at the top of the page that indicates “Coronavirus Scams.” Scamicide has been cited by the New York Times as one of three top sources for information about Coronavirus related scams.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/