"Chase Security Update" Phishing Email Scam

The fake email message below, which claims there is a problem with the recipients' Chase online banking account due to multiple login attempts, and for security purposes, the recipients need to update their account information, is a phishing scam. The fake email message was not sent by Chase, but by cyber-criminals. Therefore, recipients of the same email message are asked not to follow the instructions or click on the links within it. The links go to a fake JPMorgan Chase Bank website designed to trick visitors into stealing their Chase usernames and passwords. This is why it is recommended that online users never click on a link in an email message to sign into their online accounts. They should instead, go directly to their online account providers' websites and sign into their accounts from there.

Advertisements
Chase Security Update Phishing Email Scam

The "Chase Security Update" Phishing Email Scam

From: "Chase" <Souayani@njms.rutgers.edu>

Date: March 7, 2018 at 12:43:40 PM PST

Subject: Verification

Many of our banking improvements are inspired by customers' requests.

View Online | Email Security Information

Chase

Better, because of our customers

Dear Chase Customer,

Thank you for choosing JPMorgan Chase Bank. Unfortunately there's a problem with your online banking account. Our system monitored many login attempts to your banking account. For security purposes please update your account information.

SECURITY UPDATE

Thank you for being a valued Chase customer. We are better, because of customers like you.

Sincerely,

Lisa Banett

Lisa Barrett

Executive Director

Chase Consumer and Community Banking

Every month, thousands of these email messages are sent out by scammers to trick their potential victims into stealing their username, password, financial or personal information. Therefore, online users should never click on a link in an email message to sign into any of their online accounts. They should instead, go directly to www.chase.com in their web browsers and sign into their account from there. If there is a problem with their accounts, they will be notified after signing in.

Online users who were tricked into clicking the link in the fake email message and who have entered their usernames and passwords on the bogus Chase website that they were taken to are asked to change their Chase password and contact Chase bank immediately for help.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Bookmark articleSave

Was this article helpful?

Advertisements

Comments, Questions, Answers, or Reviews

Comments (Total: 5)

To protect your privacy, please remove sensitive or identifiable information from your comments, questions, or reviews. We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.

Your post will be set as anonymous because you are not signed in. An anonymous post cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

February 7, 2020 at 6:43 PM by
"Chase Security Update" Phishing Email Scam
an anonymous user from: Washington D.C., District of Columbia, United States

This just in from a jerk with as low an IQ as his chances of getting me to give him anything but a hard time.

My Reply to screwball: You know your a bigger a**hole than I thought you were, considering yesterday's news was Wells Fargo and today it`s Chase. Well rabbit sh**t for brain now you have Chase chasing you. Hellllloooooo

How about you get a real job cause there's plenty out there.

Still p**ssed but will pray for you

His request: Your Low Balance Alert From Chase

From:

JP Morgan Chase <image@joshbeachpress.com>

Sent:

Fri, Feb 7, 2020 at 6:18 pm

To:

undisclosed-recipients

This is an Alert to help manage your account ending in (...XXXX).

As of 02/07/2020 1:53:43 PM EST, the available account balance was less than the minimum balance of $50.00 in your Alerts settings.

This alert is due to your non-chase transfer to MCU Bank Texas.

If you know about this, you have to do nothing. If you do not know about the transfer, kindly sign on chase.com to review the transfer and protect your personal information.

To see all of the Alerts available to you, please log on Chase.

To reply to this Alert, please send us a secure message from your inbox on Chase Online.

Delete

September 10, 2019 at 5:03 PM by
"Chase Security Update" Phishing Email Scam
an anonymous user from: Fremont, Nebraska, United States

Is this an example of the current email scam

Bruce J Howe

Access to your Chase Online account has been temporarily suspended.

This was for a verification purpose to keep your account secured.

To regain access, please click on the button mentioned below and follow the instruction.

Here's what to do next:

Sign in to Chase Online following this link mentioned below.

Once you've signed in with your account, You will be required to enter specific information.

Sign in to Online Chase

This email was sent from an unmonitored mailbox.

You are receiving this email because you have subscribed to American Express.

Privacy Statement

All users of our online services subject to Privacy Statement and agree to be bound by Terms of Service. Please review.

Delete

June 28, 2019 at 1:05 PM by
"Chase Security Update" Phishing Email Scam
an anonymous user from: Norwood, Massachusetts, United States

Below is the latest scam email I just received

Bulk Mail > Message Detail

Print

Previous

Subject:

A secure message from Chase

From:

Chase <karl-adloff@t-online.de>

(Add as Preferred Sender)

Date: Fri, Jun 28, 2019 12:52 pm

Chase: Important information regarding your new Chase debit/ATM/Pre-paid card

Dear Customer

As you requested, we've ordered your new debit/ATM/Pre-paid card or you were issued one at a branch.

If you did make this request, you don’t need to do anything.

If you didn't make this request, please immediately at the chase.com/CustomerService click to check now. You can reach us anytime.

Thank you for being a valued customer.

Sincerely,

Customer Service Center

E-mail Security Information

E-mail intended for:

If you have concerns about the authenticity of this message, please visit chase.com/CustomerService for options on how to contact us.

About This Message:

This service email gives you updates and information about your Chase relationship.

We sent this email from an unmonitored mailbox. Go to, [www.chase.com/customerservice]chase.com/CustomerService to find the best way to contact us.

Your privacy is important to us. See our online Security Center to learn how to protect your information.

Chase Privacy Operations, PO Box 659752, San Antonio, TX 78265-9752

© 2019 JPMorgan Chase & Co.

Delete

June 30, 2018 at 9:05 AM by
"Chase Security Update" Phishing Email Scam
info

Here is another scam:

"We've sent an important communication to your Secure Message Center, available on Chase Online or on the Chase Mobile app.

The subject is: Changes to your Card Benefits

You can sign in to review this communication in your Secure Message Center until 09/24/2018.

Thank you for being a valued Chase customer.

ABOUT THIS MESSAGE:

This message provides updates and information for your Chase account. To reply or contact us, go to Chase.com. Please don't reply to this message.

Chase Privacy Operations, PO Box 659752, San Antonio, Texas 78265-9752. Chase Privacy Notice

Chase Online and Chase Mobile are registered trademarks of JPMorgan Chase & Co.

©2018 JPMorgan Chase & Co."

Delete

April 2, 2018 at 2:16 PM by
"Chase Security Update" Phishing Email Scam
an anonymous user from: Newark, New Jersey, United States

Beware, Chase Online Phish

Just received this scam email. The idiot who sent it, mark@optonline.net is not a very smart criminal, he sent it posing as 'Chase Online' but his actual email is embedded . The text below is exactly as "Copy and paste" interpreted it. The actual words can be discerned by removing "FriNFi" where included.

"DeFriNFiar ChaFriNFise cusFriNFitomer:

ChaFriNFise OnliFriNFine Recently CloFriNFised One Of Your AcFriNFicounts Due To

Inactivity and Suspicious Login Attempt. To Reopen The Closed

Account ImmedFriNFiiately Click SiFriNFignin

Sign In

Sincerely,"

Delete

Write Your Comment, Question, Answer, or Review

Advertisements

Online Threat Alerts Security Tips

Pay the safest way

Credit cards are the safest way to pay for online purchases because you can dispute the charges if you never get the goods or services or if the offer was misrepresented. Federal law limits your liability to $50 if someone makes unauthorized charges to your account, and most credit card issuers will remove them completely if you report the problem promptly.

Guard your personal information

In any transaction you conduct, make sure to check with your state or local consumer protection agency and the Better Business Bureau (BBB) to see if the seller, charity, company, or organization is credible. Be especially wary if the entity is unfamiliar to you. Always call the number found on a website’s contact information to make sure the number legitimately belongs to the entity you are dealing with.

Be careful of the information you share

Never give out your codes, passwords or personal information, unless you are sure of who you're dealing with

Know who you’re dealing with

Crooks pretending to be from companies you do business with may call or send an email, claiming they need to verify your personal information. Don’t provide your credit card or bank account number unless you are actually paying for something and know who you are sending payment to. Your social security number should not be necessary unless you are applying for credit. Be especially suspicious if someone claiming to be from a company with whom you have an account asks for information that the business already has.

Check your accounts

Regularly check your account transactions and report any suspicious or unauthorised transactions.

Don’t believe promises of easy money

If someone claims that you can earn money with little or no work, get a loan or credit card even if you have bad credit, or make money on an investment with little or no risk, it’s probably a scam. Oftentimes, offers that seem too good to be true, actually are too good to be true.

Do not open email from people you don’t know

If you are unsure whether an email you received is legitimate, try contacting the sender directly via other means. Do not click on any links in an email unless you are sure it is safe.

Think before you click

If an email or text message looks suspicious, don’t open any attachments or click on the links.

Verify urgent requests or unsolicited emails, messages or phone calls before you respond

If you receive a message or a phone call asking for immediate action and don't know the sender, it could be a phishing message.

Be careful with links and new website addresses

Malicious website addresses may appear almost identical to legitimate sites. Scammers often use a slight variation in spelling or logo to lure you. Malicious links can also come from friends whose email has unknowingly been compromised, so be careful.

Secure your personal information

Before providing any personal information, such as your date of birth, Social Security number, account numbers, and passwords, be sure the website is secure.

Stay informed on the latest cyber threats

Keep yourself up to date on current scams by visiting this website daily.

Use Strong Passwords

Strong passwords are critical to online security.

Keep your software up to date and maintain preventative software programs

Keep all of your software applications up to date on your computers and mobile devices. Install software that provides antivirus, firewall, and email filter services.

Update the operating systems on your electronic devices

Make sure your operating systems (OSs) and applications are up to date on all of your electronic devices. Older and unpatched versions of OSs and software are the target of many hacks. Read the CISA security tip on Understanding Patches and Software Updates for more information.

What if You Got Scammed?

Stop Contact With The Scammer

Hang up the phone. Do not reply to emails, messages, or letters that the scammer sends. Do not make any more payments to the scammer. Beware of additional scammers who may contact you claiming they can help you get your lost money back.

Secure Your Finances

  • Report potentially compromised bank account, credit or debit card information to your financial institution(s) immediately. They may be able to cancel or reverse fraudulent transactions.
  • Notify the three major credit bureaus. They can add a fraud alert to warn potential credit grantors that you may be a victim of identity theft. You may also want to consider placing a free security freeze on your credit report. Doing so prevents lenders and others from accessing your credit report entirely, which will prevent them from extending credit:

Check Your Computer

If your computer was accessed or otherwise affected by a scam, check to make sure that your anti-virus is up-to-date and running and that your system is free of malware and keylogging software. You may also need to seek the help of a computer repair company. Consider utilizing the Better Business Bureau’s website to find a reputable company.

Change Your Account Passwords

Update your bank, credit card, social media, and email account passwords to try to limit further unauthorized access. Make sure to choose strong passwords when changing account passwords.

Report The Scam

Reporting helps protect others. While agencies can’t always track down perpetrators of crimes against scammers, they can utilize the information gathered to record patterns of abuse which may lead to action being taken against a company or industry.

Report your issue to the following agencies based on the nature of the scam:

  • Local Law Enforcement: Consumers are encouraged to report scams to their local police department or sheriff’s office, especially if you lost money or property or had your identity compromised.
  • Federal Trade Commission: Contact the Federal Trade Commission (FTC) at 1-877-FTC-HELP (1-877-382-4357) or use the Online Complaint Assistant to report various types of fraud, including counterfeit checks, lottery or sweepstakes scams, and more.
  • Identitytheft.gov: If someone is using your personal information, like your Social Security, credit card, or bank account number, to open new accounts, make purchases, or get a tax refund, report it at www.identitytheft.gov. This federal government site will also help you create your Identity Theft Report and a personal recovery plan based on your situation. Questions can be directed to 877-ID THEFT.

How To Recognize a Phishing Scam

Scammers use email or text messages to try to steal your passwords, account numbers, or Social Security numbers. If they get that information, they could get access to your email, bank, or other accounts. Or they could sell your information to other scammers. Scammers launch thousands of phishing attacks like these every day — and they’re often successful.

Scammers often update their tactics to keep up with the latest news or trends, but here are some common tactics used in phishing emails or text messages:

Phishing emails and text messages often tell a story to trick you into clicking on a link or opening an attachment. You might get an unexpected email or text message that looks like it’s from a company you know or trust, like a bank or a credit card or utility company. Or maybe it’s from an online payment website or app. The message could be from a scammer, who might

  • say they’ve noticed some suspicious activity or log-in attempts — they haven’t
  • claim there’s a problem with your account or your payment information — there isn’t
  • say you need to confirm some personal or financial information — you don’t
  • include an invoice you don’t recognize — it’s fake
  • want you to click on a link to make a payment — but the link has malware
  • say you’re eligible to register for a government refund — it’s a scam
  • offer a coupon for free stuff — it’s not real

About Online Threat Alerts (OTA)

Online Threat Alerts or OTA is an anti-cybercrime community that started in 2012. OTA alerts the public to cyber crimes and other web threats.

By alerting the public, we have prevented a lot of online users from getting scammed or becoming victims of cybercrimes.

With the ever-increasing number of people going online, it important to have a community like OTA that continuously alerts or protects those same people from cyber-criminals, scammers and hackers, who are every day finding new ways of carrying out their malicious activities.

Online users can help by reporting suspicious or malicious messages or websites to OTA. And, if they want to determine if a message or website is a threat or scam, they can use OTA's search engine to search for the website or parts of the message for information.

Help maintain Online Threat Alerts (OTA).

"Chase Security Update" Phishing Email Scam