CPB Home Press Releases Consumer Links Search

The New York State Consumer Protection Board (CPB) and Chase are joining forces to alert consumers to a new Phishing scam which trades on the name recognition and reputation of Chase Bank, and to warn consumers not to respond.

WHAT IS THE ISSUE? Chase and the CPB have been contacted by concerned consumers who received an e-mail asking them to complete an online form that requires the disclosure of personal identifiable information. The bogus e-mail purports that the online form is necessary as a result of "new security measures." As is typical with phishing scams, the e-mail looks legitimate.

WHAT IS THE SCAM? Scammers are attempting to illegally obtain personally identifiable information (PII) from consumers for the possible purpose of committing identity theft and fraud.

Consumers who have responded to these e-mails may already be victims, as the form asks for their name, address, and phone number in combination with credit card numbers, bank account information, Social Security number (SSn), passwords, and other sensitive information.

Sample of the Chase Phishing Scam E-mail:

WHAT STEPS SHOULD YOU TAKE?  The CPB and Chase urge consumers who receive this e-mail not to respond.

Consumers should:

• Contact organizations or institutions with whom you do business in response to unsolicited e-mails using their company name by calling the number provided on official company statements.
• Install, update and use anti-virus and anti-spyware software, as well as firewalls. Spam filters can help reduce the number of Phishing e-mails you get. Firewalls can be helpful in preventing hackers and unauthorized communications from infiltrating computers. This is especially important with broadband connections because computers are open to the Internet whenever it’s turned on. Go to www.onguardonline.gov or www.staysafeonline.org to learn more about securing your computer.
• Review your financial account statements upon receipt to check for unauthorized charges.
• Check your credit report regularly. You can do this free of charge three times a year through the three reporting agencies found online at www.annualcreditreport.com.
• Use caution when opening any attachment or downloading any files from e-mails received even from known sources, to avoid the possibility of infecting computers with viruses, malware, spyware or other software designed to impair your computer’s security.
• Look for the “https” prefix and a closed padlock when entering any financial information for electronic transmission over the Internet.
• Report suspected Phishing scams to the Federal Trade Commission (FTC) at spam@uce.gov, to the CPB at www.nysconsumer.gov, and to the institution or company targeted in the Phishing e-mail. You also may report Phishing e-mails to the Anti-Phishing Working Group at reportphishing@antiphishing.org.
• Act immediately if you provided personal identifiable information to unknown or unverified parties by notifying the companies with whom you have the accounts and by placing a security freeze or fraud alert on your files at credit reporting agencies.
• Check the websites of your financial institution, the Consumer Protection Board and the FTC for reports of Phishing scams before responding to e-mail requests for information.
• Report the Chase Phishing scam to the CPB using the online form found at http://www.nysconsumer.gov/complaint.htm or call the CPB at 1-800-697-1220. Reports may also be filed with the FTC at www.ftc.gov.
• Report Chase-related fraudulent e-mails to abuse@chase.com. You'll receive an automated response to let you know they received the e-mail. Chase has posted warnings to consumers on its website regarding this and similar e-mail scams.
• Read the CPB’s publications on Phishing, including the Spotlight on Phishing Scams found at http://www.consumer.state.ny.us/pdf/phishing_scam_spotlight.pdf for background information, and the Phishing Scam Prevention Tips found at http://www.consumer.state.ny.us/pdf/phishing_scam_prevention_tips_for_consumers.pdf

“We are pleased that Chase is conducting this public effort to alert consumers,” said Mindy A. Bockstein, Chairperson and Executive Director of the CPB. “The key to avoiding these Phishing nets is to stay aware of the latest scams. Governor Paterson has signed new laws to help protect New Yorkers, and, working together with businesses such as Chase, we are hoping to stem the tide of identity theft. The Consumer Protection Board will continue to monitor Phishing to help prevent this invasive and costly crime which compromises consumers and hurts the good name of reputable businesses.”

About Chase
Chase is the U.S. consumer and commercial banking business of JPMorgan Chase & Co. (NYSE: JPM), which operates more than 5,000 branches and 14,000 ATMs nationally under the Chase and WaMu brands. Chase has 159 million credit cards issued and serves consumers and small businesses through bank branches, ATMs and mortgage offices as well as through relationships with auto dealerships and schools and universities. More information about Chase is available at www.chase.com.

About the New York State Consumer Protection Board
The New York State Consumer Protection Board, established in 1970 by the New York State Legislature, is the State's top consumer watchdog and think tank. The CPB's core mission is to protect New Yorkers by publicizing unscrupulous and questionable business practices and product recalls; conducting investigations and hearings; enforcing the “Do Not Call Law”; researching issues; developing legislation; creating consumer education programs and materials; responding to individual marketplace complaints by securing voluntary agreements; and, representing the interests of consumers before the Public Service Commission and other State and federal agencies. More information about the Consumer Protection Board is available at www.nysconsumer.gov.