Security News > 2021 > April > Phishing attacks target Chase Bank customers
Two email campaigns discovered by Armorblox impersonated Chase in an attempt to steal login credentials.
In a new report released Tuesday, email security provider Armorblox looked at two recent phishing campaigns aimed at Chase Bank customers and offered advice on how to protect yourself from such scams.
Clicking the primary link in the email took you to a spoofed Chase login portal that asked you to enter your bank account credentials, which the cybercriminals then naturally captured.
With a subject line of "URGENT: Unusual sign-in activity," the emails used a sender name of "Chase Bank Customer Care." The message itself contained a link for potential victims to click to confirm their account and restore normal access.
These types of emails adopt the same branding, style and layout found in legitimate messages and webpages from Chase.
Look for inconsistencies in the email that trigger such questions as "Why is my bank sending emails to my work account" and "Why is the URL's parent domain different from chase.com?".
News URL
https://www.techrepublic.com/article/phishing-attacks-target-chase-bank-customers/#ftag=RSS56d97e7
Related news
- Phishing platform 'Lucid' behind wave of iOS, Android SMS attacks (source)
- iOS devices face twice the phishing attacks of Android (source)
- Windows NTLM hash leak flaw exploited in phishing attacks on governments (source)
- Three Reasons Why the Browser is Best for Stopping Phishing Attacks (source)
- Phishing detection is broken: Why most attacks feel like a zero day (source)
- DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack (source)
- Low-tech phishing attacks are gaining ground (source)
- MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks (source)
- Focused Phishing: Attack Targets Victims With Trusted Sites and Live Validation (source)
- CTM360 Identifies Surge in Phishing Attacks Targeting Meta Business Users (source)