Chase Paymentech Spoofed Spam Mails Detected
According to reports from softpedia.com published on 20th November 2012, spam mails posing as arriving from Chase Paymentech are presently circulating online.
Chase Paymentech, incidentally, is one prime company processing credit cards as it runs chiefly from its Dallas (Texas) headquarters.
Depicting the title "Merchant Billing Statement," the fake e-mail tells the recipient that his electronically provided Merchant Billing Statement from Chase Paymentech is attached herewith. Incase he requires any help he may call Merchant Services by dialing a particular telephone number (given inside the statement) alternatively get in touch with his Account Executive. The e-mail categorically asks the recipient not to reply to the message since the sender's address doesn't have a source that could be monitoring it; consequently, his reply won't reach Chase Paymentech.
The e-mail further tells that Chase Paymentech won't bear the onus of any liability, which could occur from the applied e-mail service's else Chase Paymentech's delay or failure. As per recommendation by the company, Merchants should keep on maintaining watch on their statement details routinely.
The e-mail then provides a web-link from where apparently additional information could be obtained regarding Chase Paymentech Solutions as also its processing services for LLC payment.
But the e-mail isn't a Chase Paymentech message while there's no billing statement inside the attachment. Indeed, if any computer-user clicks the attachment, he could end up downloading malware. This malware is characteristically used for garnering confidential details out of the infected PC, cause linkages with remote servers that cyber-criminals control and download more malicious software.
However, Chase Paymentech clients believing that the attachment consists of one real file giving the details on their Chase accounts, may proceed to click on it. Others, believing certain mistake has happened which requires immediate rectification may also proceed to do the same. Moreover, for making the e-mail appear increasingly credible, the spammers include one web-link leading onto the actual site of Chase Paymentech along with genuine appearing confidentiality and liability declarations.
Eventually, cyber-criminals in a similar attack on financial institution recently distributed dual fraudulent, phishing e-mails though titled differently, targeted Tesco Bank during the end-week of October 2012.
Related article: CSA Calls To Exercise Caution Against Stock Spam
» SPAMfighter News - 29-11-2012