Be aware of fake bank websites asking for your personal details

by Paul Ducklin on January 6, 2014 | 1 Comment

FILED U DE!" Data lo##, Feature$, P%i#%in&

'ere(# a brie) remin$er o) %o* cybercriminal# u#e real #ecurity $i#a#ter# to cau#e )ollo*+u, $i#a#ter# o) t%eir o*n.ou(ll ,robably remember t%at *e *rote, almo#t e/actly a mont% a&o, about a $ata breac% at JP 0or&an C%a#e1bout 420,000 o) t%e 22,000,000 u#er# o) C%a#e(# UC1!D $ebit car$ ,ro$uct %a$ t%eir car$ $ata #tolen3%at ,ut 4u#t un$er 25 o) car$%ol$er# in t%e %ot #eat, *%ic% *a# ba$ enou&%, but le)t t%e ot%er 675 in a #ort o) $ata #ecurity limbo-

Was there a problem or not?

8oul$ C%a#e(# in9e#ti&ation# lea$ to )urt%er action or not: 8oul$ t%ey &et a *arnin& #ome time $o*n t%e track, like many u#er# $i$ in t%e *ake o) 1$obe(# &iant breac% la#t year: 8it% t%i# in min$, *e *eren(t #ur,ri#e$, %ere at Follo*u, P%i#%,< lookin& like t%i#" ake$ ;ecurity, to recei9e *%at you mi&%t call a <C%a#e

Dear Chase Paymentech User, During one of our regular verification procedures we've encountered a problem caused by the recent database breach. Please, take a time to complete the following information on your profile to end our identity verification process. Otherwise your access to Chase Paymentech services will be stopped. To verify information now, please follow the link: [CLICK HERE]

3%e ,%i#% i#n(t terribly #o,%i#ticate$, a# it $um,# you at a merc%ant ,a&e, not at a UC1!D ,a&e-

=0erc%ant# are C%a#e cu#tomer# *%o ,roce## ,ayment#> UC1!D cu#tomer# are C%a#e ,ro$uct u#er# *%o %ol$ a bene)it ,ayment# car$ to make ,urc%a#e#-? e9ert%ele##, t%e ,%i#% ,a##e# ca#ual 9i#ual mu#ter, becau#e t%e '30L, #tyle#%eet an$ ima&ery are all ri,,e$ o)) )rom C%a#e(# o*n #er9er#"

1ctual merc%ant# #%oul$n(t be )oole$, becau#e C%a#e(# o))icial merc%ant lo&in ,a&e# look @uite $i))erent to t%e ,%i#%JP 0or&an C%a#e(# actual ,a&e a#k# )or $i))erent in)ormation, an$ u#e# '33P; *it% a certi)icate o))icially i##ue$ to C%a#e Paymentec%"

Aear in min$ t%at e9en + ,er%a,# e#,eciallyB + a bank t%at %a# #u))ere$ a #ecurity la,#e *on(t email you *it% a clickable link t%at take# you to a lo&in ,a&eAy )orcin& you to lo&in un$er your o*n #team, t%e bank i# %el,in& to &et you out o) t%e %abit o) relyin& on link# t%at *ere #ent by an out#i$er;o *%ene9er you recei9e an email link t%at $oe# &o to a lo&in ,a&e, like t%i# one, you can immediately be certain is it bogus-

If you ever have issue or notice any suspicious activities, just contact your bank immediately without a day and they will be more than happy to help you through. Is better to be safe than sorry. Internet phishers are now into more sophisticated methods of fooling users especially with online banking into revealing your personal details to them without you knowing it.