Chase scam

I noticed that my CFCU scam post is receiving a lot of traffic. So, when i got another “nice” scam message, i decided to post it here too as a service to the community.

This time the message came supposedly from Chase:

Dear Customer

Due to concerns, for the safety and integrity of your account we have issued this warning message.

It has come to our attention that your account information needs to be updated as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website. If you could please take 5-10 minutes out of your online experience and update your personal records you will not run into any future problems with the online service.

Once you have updated your account records your account service will not be interrupted and will continue as normal.

To update your account records click on the following link:

JP Morgan Chase Bank © 2008 Chase Bank. Member FDIC.

Thank You.

Now, if you look at the code, the link actually leads to: If you delete everything after the .com, you will see a website that seems to be in Korean.  It looks like a gambling website, but i don’t really know (if you read the language, please feel free to leave a comment telling what the orignal website is about).

Here, i have to give kudos to FireFox (FF). When i went to this page, i received a warning message telling that this is a scam and even its purpose:

FF warning message for Chase scam

So, one more reason to use FF. I was really impressed.

If you disregard this message, you will see a web page that resembles the Chase website with one weird (and i think not very smart) behavior – every single link at the website would bring you back to the same page.

Chase Scam screen 1

Unless, of course, you enter some random characters for the User ID and the Password.  In that case, you will receive the following page:

Chase Scam screen 2

This one is actually rather funny. They are asking you for a bunch of things such as your email password and your social security number. That should be a clear red flag for anyone, even the least experienced user! Similarly to the CFCU scam, they are smart about requesting a certain type and a certain number of characters in the various fields. However, unlike the CFCU folks, they are not clever with resuming it in an “elegant” way. They keep on telling you that the credit card number you’ve entered is wrong. Probably this is an attempt to collect a number of credit card numbers counting on a person trying a different card each time. But at the same time, i think this kind of behavior would alert anyone.

To summarize, it is a scam, and not the most elegant one. If you got that email and this post helped you in clarifying your doubts, i am glad.


8 Responses to “Chase scam”

  1. Josh Braun Says:

    I’ve also been impressed with Firefox’s suspected forgery feature. It also tells you about sites that are suspected of distributing malware, which is cool. It’s based on user reporting, and I saw yesterday that Google is beginning to display the Firefox malware warnings in its search results, which is nifty (they’re really tight with Mozilla—some say too much so).

    I think I was most impressed the other day when Firefox came up with a page saying that the site I was visiting had fallen into an infinite loop and would never load correctly. Another browser would have just hung while the site tried to refresh indefinitely. Not only did FF not do that, it actually explained what was happening and gave me the choice to browse away, or continue to allow the page to load.

  2. Dima Says:

    Nice…. i liked the last example! I assume that is new to FF3?

    There was also an add-on to FF that was used for that exactly purpose – reporting the trustfulness of a website by the users. I had it for a while, but not after reinstalling the system. Good to know they’ve integrated that.

  3. Josh Braun Says:

    Yeah, it’s new to FF3. The new version primarily updates/fixes 3 things:

    A major memory leak that used to crash the program and slow down the machines it ran on.
    Adds security features, like the ones you mention.
    Major usability improvements. Some of them come from integrating especially good plugins, like the user-reporting one, or the one that let you save your open tabs when you quit. Others are things like improved bookmarking and page history. (For instance, you can now begin typing a page title, instead of a URL, and the URL bar will autofill).

    I’ve seen a few bloggers commenting that they like the new direction Mozilla seems to be moving in, emphasizing usability over new features. I imagine plugin developers provide the latter anyway, without putting strain on the core development team. It’s probably not that hard to simply build a plugin into a future release.

  4. Dima Says:

    Sounds good! Would you say it is stable enough to make it the main browser?

  5. Josh Braun Says:

    FF3 becomes the official release on June 17. I’ve had it as my main browser for a few months—sometime after Mozilla put out a press release inviting mainstream users. Anyhow, I’ve never had a problem with it. The only issue during that time was that not all plugins were compatible. But nearly all of them have been updated now, except a couple that I suspect have been orphaned. The main thing that’s made it a better experience is the fact that they’ve repaired the memory leakage that was such a problem in FF2.

    The leak was horrendous—at least on Mac, but I’ve heard that this problem was to some extent independent of what platform you were using. In any case, when I had FF2 running for more than 15 minutes, it would basically lock up my whole computer.

    Now it’s much, much faster—not only in terms of the software, but also pageload times. I seem to recall that the rendering engine in FF3 was going to get some sort of overhaul, but I could be wrong.

  6. Josh Braun Says:

    …interesting. I read all the way to the end of the article I linked to for the first time and the author says FF3 still has memory issues. That article was re: Beta 1, though, which came out quite some time ago. Anyhow, I guess I can only say my personal experience has been much better with FF3.

  7. Leonid Says:

    One thing to add. All the plugins written by Mozilla Labs are available only for 3.0 family. I especially recommend Weave — a bookmarks synchronizing add-on. (Technically, it’s incorrect. Apparently, it’s supposed to do something grand in the future. I ran into an interview by some MF guy that explained their vision of the future and how desktops will be integrated with the Web and how Weave will do just that. But for any practical purpose, it’s a bookmarks synchronizer and it is very good as such).
    Personally, I don’t use FF3 because it is not in my linux distro yet. I installed it at the side, ran it, got impressed by the rendering speed, and that’s it.

  8. Josh Braun Says:

    Thanks for the tip! I’ll have to check out Weave. If you like the whole desktop-web integration thing, it sounds like a thing to get in on early.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: