Information Stealing Phishing E-mail Targets Chase Customers
The Consumer Protection Board (CPB) of New York State has issued a warning to Chase Bank customers that they could be attacked by a phishing scam involving e-mails that seek personal information in the pretext of upholding new security measures.
CPB and Chase have been receiving complaints from anxious customers who have got an e-mail that asks them to urgently fill in a form with details including personal identifiable credentials. Citing fresh security measures apparently launched at Chase, the fake e-mail explains that it is important that recipients complete the form. Meanwhile, the e-mail appears legitimate just as one in a typical phishing scam.
Additionally, it displays a web-link and asks the recipients to click on the link. However, the link leads to a fake website where personal information is stolen from the consumers i.e. after the e-mail gets a customer to follow the web-link and access the bogus site, solicitations are made for the customer to enter his confidential information like employment details, credit card number and other personal information.
Nevertheless, security researchers stated customers who have replied with their information to these fraudulent messages might become victims since the form solicits their name, phone number, address along with passwords, bank account details, Social Security number, credit card details as well as other sensitive data.
Security researchers also suggested that accountholders who have been ensnared by the scam should immediately examine their financial statements for any suspected transaction and get in touch with the CPB on its official website.
Meanwhile, CPB advised consumers not to do anything instructed in the malicious e-mail such as following the link. The board stated customers should get in touch with institutions or organizations if they receive such unsolicited e-mails that utilize their brand name through telephone calls at the number given in the company statements.
Further, spammers are routinely targeting international bank customers with phishing e-mails. In a recent instance, customers of Australia-based St. George Bank were attacked by phishing e-mails in June 2009 in various pretexts tried to dupe probable victims into clicking on malicious links.
Related article: Inappropriate IT Decisions Leads to Security Dangers
» SPAMfighter News - 15-07-2009