Irregular Activities On Your Account: A‏ Chase Bank Phish

Posted: December 11, 2014 by Christopher Boyd
Last updated: March 30, 2016

From the spam traps: a fake Chase Bank “Security Warning” email, claiming to have noticed something peculiar going on with your account.

The mail reads as follows:

SECURITY MESSAGE - Irregular Activities On Your Account‏

Dear Chase Online Customer,

We're currently upgrading our systems to bring enhanced features to your Online Banking experience. As a result, your account is temporarily unavailable.

Please download the file attached and upgrade your account to our new Online Banking system.

Note: fail to upgrade your account, it will be automatically closed.

After this step, you are permitted to access your Online Banking System.

Sincerely,
Customer Service Team.

E-mail Security Information
E-mail intended for your account suspicious.

Note: If you fail to verify your account, it will be automatically closed. After this step, you are permitted to access your Online Banking System.

ABOUT THIS MESSAGE:
This service message was delivered to you as a Chase Bank customer to provide you with account verification needed.
If you want to contact Chase, please do not reply to this message. For faster verification update, please download and verify your account. Replies to this message will not be read or responded to.

The mail comes with an attachment called Chase_OnlineBanking.html, and it asks for a rather sizable chunk of personal information including User ID, password, full name, home address, city, state, zip, home / mobile phone, email address AND email password.

As for payment details, they want ATM / debit card number, CVV, ATM pin, expiration date, checking / savings account number and account routing number.

This slideshow requires JavaScript.

Anybody caught out by this is not going to have a good day – please avoid all banking emails which come with attachments asking for payment and / or personal information. If in doubt, give your bank a call first and have them confirm that shenanigans are taking place. Scammers attempting to snare unsuspecting victims with HTML attachments is not a new trick, but it could prove very costly for anybody unfortunate enough to fall for it.

Christopher Boyd

COMMENTS

CoyoteMan50

I have a number of those emails. Those phishes go back a few years to. Could it be that the same scams are now filtering down the scammers food chain to lower level scam artists?
Devin

Surely, no one would fall for this scam … no one is THAT clueless to the long standing news and warnings about “not giving out personal info” like this. Anyone who falls for this one, needs to have their computer taken away and relegated to using a soup can to bury their money in their back yard.
doehunter

If someone falls for this………. hopefully they do not have a license to operate a motor vehicle or own any fire arms because they just demonstrated their high level of ignorance.
Pingback: Irregular Activities On Your Account: A‏ Chase Bank Phish | All Things Equal()
Jeff West

Unfortunately it is the vulnerable who are at risk here. Especially the elderly. Not everyone is as sharp as you. Think before you type
Devin

Let’s see, hmmmm. Ok Jeff, I have thought. Once again, “Anyone who falls for this one, needs to cease performing any internet business activities until they can be educated on the scams and vulnerabilities present when doing business DIGITALLY”. Well, it looks like my opinion has been re-worded … but essentially has not changed.
CWS_FAN

@Jeff: Ignore Devin. He has no clue about internet security. Adults of all ages and levels of education fall prey to these scams. I worked in a financial institution’s wherein I handled this type of fraud.
Pingback: Avoid this Outlook Phish | Malwarebytes Unpacked()
Ozerosux

Just got one similar to this today. Funny thing is this email said if I didn’t do something by June 1st, 2015 my account would be suspended. DUH – frakin’ idiots.
Pingback: The Growing Threat from Phishing | Malwarebytes Unpacked()
TinMan21850

I just received one and refuse to even open the xdoc attached. They wouldn’t do this if people fell for this, especially the elderly.

RELATED ARTICLES

Cybercrime | Malware

Intentional PE Corruption

April 30, 2012 - Malwarebytes Anti-Malware is under constant attack. 24 hours per day, 7 days per week, 365 days per year. If you read my recent blog post about the development of Malwarebytes Chameleon, you know that we at Malwarebytes have big red ‘X’s on our chests; the bad guys are always out to get us. Malwarebytes Anti-Malware...

CONTINUE READING 14 Comments

Cybercrime | Malware

The Cat-and-Mouse Game: The Story of Malwarebytes Chameleon

April 24, 2012 - The fight against malware is a cat-and-mouse game. It is constant and constantly escalating. They make a move, you counter it, they counter your counter, lather, rinse, repeat. What’s more: malware almost always has the advantage. Our software Malwarebytes Anti-Malware earned a reputation for having a high success rate in combating new in-the-wild malware infections:...

CONTINUE READING 7 Comments

Cybercrime | Hacking

Cybercrime at $12.5 Billion: The Great Underreported Threat

May 7, 2012 - From the outside looking in, it may appear that the press regularly reports stories when a company’s website, database or intellectual property has been hacked, stolen or compromised. The more eye-opening fact of the matter is that the scale and scope of the cybercrime problem is much, much larger and the actual incidences of these...

CONTINUE READING 2 Comments

Cybercrime | Hacking

DDOS, Botnets and Worms…Oh My!

May 14, 2012 - The recent attack on the Serious Organized Crime Agency (SOCA), most likely in response to the 36 data selling sites shut down a few weeks ago, lead to the admission by high ranking SOCA officials that the Ministry of Defense networks need to “beef up their security.” In response to this we would like to...

CONTINUE READING 1 Comment

Cybercrime | Exploits

“The Sky is Falling… Are You at Risk from the Flame Malware?”

June 1, 2012 - The last time I checked with Google News this morning there were over 19,100,000 results for “flame malware”. You may have heard many stories this week about this complex trojan. Here are links to three of my current personal favorite articles on “Flame”. Powerful ‘Flame’ cyberweapon tied to popular Angry Birds game – (Fox News)...

CONTINUE READING 3 Comments

ABOUT THE AUTHOR

Christopher Boyd
Lead Malware Intelligence Analyst

Former Director of Research at FaceTime Security Labs. He has a very particular set of skills. Skills that make him a nightmare for threats like you.

CATEGORIES

101 Cybercrime Malwarebytes news PUP Security world

SEARCH LABS

TOP POSTS