Wow! I almost had my Chase account hacked... wait..

[Bob in a quantum-state-of-faith]

... I do not have a Chase bank account!

WTF?

I got the following e-mail, complete with a genuine Chase logo at the top... notice the 'http://verify.chase.com" addy embedded in the e-mail.

Dear Chase Customer,

This is to inform you that there have been multiple login attempts on your chase
online account from an unknown IP address<91.34.4.11.122>.
Due to security reasons, we have temporarily suspended your Chase Online access.
You are hereby required to verify your Chase Online account with your account information
in order to restore your online access.

To verify your Chase Online account information, click on the link below

http://verify.chase.com

The purpose of this verification is to help prevent fraud on the Chase Online website.
Thank you for banking with us at chase.com
Sincerely,

Chase Online Security Team
P.S. The link in this message will automatically expire within 24 Hours Hours.

ÿFFFFA9 2011 JPMorgan Chase & Co. All Rights Reserved.

So, being the sneaky sort that I am?  I right-clicked on that linky, and said "copy link".  Then I pasted it into NOTEPAD.

Guess what?  It wasn't Chase...  here it is -- please-please, do not click it-- m'kay?  

Code Select Expand

http://www.akakiamarica.com.br/images/chaseonlne/online/index.htm

What I found was the domain was registered to these dudes:  (via WhoIs domain lookup)

Code Select Expand

Whois Record

domain:      akakiamarica.com.br
owner:       José Paulo Pereira de Almeida
ownerid:     051.862.637-70
country:     BR
owner-c:     BGCBA2
admin-c:     BGCBA2
tech-c:      BGCBA2
billing-c:   BGCBA2
nserver:     ns1.cluster02brasil.com  
nsstat:      20111017 AA
nslastaa:    20111017
nserver:     ns2.cluster02brasil.com  
nsstat:      20111017 AA
nslastaa:    20111017
saci:        yes
created:     20101124 #7608161
expires:     20111124
changed:     20101222
status:      published

nic-hdl-br:  BGCBA2
person:      BRUNO GUEDES CARNEIRO BARBOSA
e-mail:      
created:     20090911
changed:     20090911


Hmmm... Barbosa?  And not New York?  (At least I thought Chase was out of NY, but I could be misremembering).

Bottom line?

If it sounds too good to be true?

It is....



Edit: modified the dangerous link to be non clickable.

[pieces o nine]

I would contact the local Chase branch and foward it to someone there to deal with...

I can see some gullible, not very web-savvy person being fooled by this. 

[Bob in a quantum-state-of-faith]

Yeah, I've not deleted it (nor opened it).   I haven't decided who to forward it to, but the FBI also came across my thoughts.

Except I don't know either of their addys...

[Opsa]

Good for you!

Anything that looks anything like this reeks of foul play and should be brought to the attention of the people they are impersonating immediately.

Here is a Chase fraud page you can try.

[Sibling Zono (anon1mat0)]

Phishing (as the practice is called) has become quite frequent nowadays. Generally speaking the basic recommendation is to NEVER click on an email link that purports itself as your bank, email or ISP, use the ones you have as bookmarks or type the address yourself and login in the regular way. If there is something of interest it will show up there.

[Bob in a quantum-state-of-faith]

Thanks, Opsa.

I forwarded the fraud as an attachment, so they can analyze it's contents and perhaps put the kabash on these punks.

[Griffin NoName]

I've had similar stuff to this. I just delete them. I do worry about people who don't know about phishing - many people I know would not recognize this as suspicious.

[Opsa]

That's why we really have to report these if we get them, so we can protect others who might not be so savvy.

Thanks, Bob!

[Darlica]

Yup. phishing...

Got one allegedly from E-bay long before I had an E-bay account (which BTW goes by another name in Sweden ).
I also get "National Lottery" ones from GB which is kind of fun since I  a. don't play lotteries (OK, maybe one or twice a year but that would be the scratch kind) b. Does not live in GB.


I think I have managed to explain the concept of Phishing to (and scare the jeebuz out of) my mother.  Whenever she gets a email she's unsure of or can't identify as a fraud herself, which she has become quite good at, she either call me or send an screen capture to me... 

That and I've installed an aggressive anti-virus/firewall and put the settings on "protective pitt-bull" which means she calls me now and then because the anti-virus won't let a certain cookie or function out. 

[Bob in a quantum-state-of-faith]

"protective pitt-bull" .... I love that.

[anthrobabe]

I send stuff to various tell on links at my bank, etc all the time-- I just shoot it to them-- some people tell me why bother they will just have another domain in a few minutes but you know I don't care
I'm tellin!

[pieces o nine]

^ I agree.

[They] will always have another scam going; is that a reason for those who see through [them] to turn a blind eye?  Your response is a taddy version of:

All that is necessary for the triumph of evil is that good men do nothing.

[Opsa]

A big rumble on that, my Sibs.

Maybe we should encourage the ratting out of scammers by making a cyber "Justice League" of heroes that report this junk, just to encourage the reports, and to network about other ways to discourage scams and spams. Like super-heroes, we're protecting the meeker types.

We could give ourselves ridiculous super-hero names and pat each other on the back.

What would be a good name for this?

[Swatopluk]

Is The Spambusters already taken?

[Opsa]

Not bad.

How about
The Fraud Squad?
or
The Phish Phighters?

[Swatopluk]

Phisherman's Foe

[pieces o nine]

They will make a film about the movement:

Shoes of the Phisherman, starring Humble Toadfish.   

[Opsa]

Phishing Trippers?

Phish Gutting?

Scam Slammers?

Dang, I like all of these ideas so far. Maybe we could start a new thread here, or eventually see if someone can host us on another website.

Edit: OMG- how about Phish Slapping Dancers?

[Bob in a quantum-state-of-faith]

.... shades of Monty Python's Holy Grail... "cut down this tree.... with an herring."

[Griffin NoName]

Dang, I like all of these ideas so far. Maybe we could start a new thread here, or eventually see if someone can host us on another website.

I'd offer but would not like the risk of my domain being a target for reprisals !!  So I won't offer. I think anyone hosting such a website would have to be robust 

[pieces o nine]

Edit: OMG- how about Phish Slapping Dancers?

   

[Aggie]

What was that phrase Chatty used to use?  Phish Dancing Autofell....   um, maybe not. 

[Opsa]

Hmmm, Chatty's Phishing Smiters?

We could try it on another thread in here and see if it takes.



Toadfish Phish Fisheries