Security firm warns of 'toll-free' Chase phishing scam

By
Follow google news

Hoping to increase their victim pool, scammers have launched a new Chase Bank email phishing scheme asking recipients to provide their personal information on a toll-free telephone call.

According to Scotts Valley, Calif., content security vendor SurfControl, the new technique may increase its success rate because victims are used to seeing malicious URLs in Chase phishing attacks, not a number to call.


When victims dial the phone number, they are welcomed with a recorded message asking them for their account number, its expiration date and the last four digits of their Social Security number.

At the end, the message says, "Thank you. Your account has been verified."

The threat originated in Australia, SurfControl said in statement.

Chase said on its website that it normally sends emails to publicize a new banking feature, not to request personal information.

"Looks can be deceiving," the bank said. "As criminals make more credible forgeries of legitimate email and websites, you can no longer rely on seeing familiar graphics like the Chase logo."

"The key to determining the authenticity of email lies in the tone of the message and in the nature of the solicitation," added the bank statement. "Criminals want you to give them information, and they're not very subtle about it. Our goal in marketing via email is to inform you about a product or service we think you might be interested in."

Add iTnews as your trusted source

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

JB Hi-Fi Group finds new cyber security leader

JB Hi-Fi Group finds new cyber security leader

Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases

Toll Group puts third-party risk at centre of AI-era data security

Toll Group puts third-party risk at centre of AI-era data security

How Monash University is tackling the AI-driven app security gap

How Monash University is tackling the AI-driven app security gap

Log In

  |  Forgot your password?