Skip to content
Go to Home Page
News

Beware: Phishing Email Targets Chase Customers

Zach Honig
Articles
Zach Honig is Editor-at-Large at TPG, with contributions ranging from articles digging deep on loyalty programs and credit cards to delivery flight coverage to drone photography and much more.
Aug. 17, 2018
2 min read
Beware: Phishing Email Targets Chase Customers
This post contains references to products from one or more of our advertisers. We may receive compensation when you click on links to those products. Terms apply to the offers listed on this page. For an explanation of our Advertising Policy, visit this page.

It's one of the oldest tricks in the book — scammers send a generic email to thousands or millions of email accounts, prompting the recipient to click a link and "log in" with their account credentials. Rather than granting access to the site as expected, usernames and passwords are transmitted directly to the scammers, who can in turn use that information to access your account.

This week, a new email is making the rounds. TPG Lounge member Hannah Goh shared a message she received that appeared to be from Chase. While a close examination of the email text makes it clear that it's not authentic, it's easy enough to skim the message, click the link and accidentally hand over your banking credentials.

The email text begins:

"Dear Chase Customer: Just to let you know that we noticed unusual activities on your Account during our regular update today. It is either your details have been changed or incomplete..."

It goes on to prompt the recipient to "verify your details to regain access to credit or debit card." If you click the link and enter your credentials, they'll be instantly transmitted to the bad guys. No bueno.

As Hannah suggests in her post, you should forward any such messages to a dedicated address at your bank. I've rounded up some key contacts below:

  • Amex: spoof@americanexpress.com
  • Bank of America: abuse@bankofamerica.com
  • Capital One: abuse@capitalone.com
  • Chase: abuse@chase.com
  • Citi: spoof@citicorp.com

You should also forward the message to the Federal Trade Commission (FTC) spam address at spam@uce.gov, and consider sharing it in the TPG Lounge, giving your fellow points and miles enthusiasts a heads up.

Sign up for our daily newsletter

If you do click a link and unintentionally transmit your credentials, be sure to change your password immediately — for that account and anywhere else you use those details online, since criminals can use your username and password to access other websites, too. This also serves as a good reminder to ensure that two-factor authentication is turned on, and to review and follow our 6 Tips for Keeping Your Credit Card Safe Online.

Related stories
Oceanside pool at St. Regis Punta Mita
Here are the best Black Friday travel deals of 2022
AC Signature class
Great deal: Book business class tickets at premium economy prices with this Avianca LifeMiles sale
Mother and son at a Christmas market
Holiday gift guide: TPG’s 22 travel-friendly picks for 2022
Snow covered back bowls at Vail
Vail Resorts lift-ticket sales capped; buy your Epic Pass by Dec. 4
Featured image by Photo by rawpixel on Unsplash

Top offers from our partners

How we chose these cards

Our points-obsessed staff uses a plethora of credit cards on a daily basis. If anyone on our team wouldn’t recommend it to a friend or a family member, we wouldn’t recommend it on The Points Guy either. Our opinions are our own, and have not been reviewed, approved, or endorsed by our advertising partners.
See all best card offers
Related stories
Oceanside pool at St. Regis Punta Mita
Guide
Here are the best Black Friday travel deals of 2022
AC Signature class
Guide
Great deal: Book business class tickets at premium economy prices with this Avianca LifeMiles sale
Mother and son at a Christmas market
Guide
Holiday gift guide: TPG’s 22 travel-friendly picks for 2022
Snow covered back bowls at Vail
News
Vail Resorts lift-ticket sales capped; buy your Epic Pass by Dec. 4