Chase customers are reportedly being targeted in a phishing attack. Phish email try to trick the recipient into providing login usernames and passwords and other sensitive financial details. The subject line of the Chase phishing email is "Chase Notification" and the body of the email reads as follows:
Dear Chase Online Customer:
This is a security alert from Chase Online Banking Fraud Prevention about your account with chase bank. We identified activity on your account that may be fraudulent and ask you verify the activity immediately. We have attempted to contact you via phone at the number you provided on your account and have been unable to reach you and/or left a message. If you have already responded to our phone call, please disregard this message.
For your protection, transactions on your account may be limited until you are able to verify the activity. We realize that this precaution may cause you some inconvenience; however keeping your account safe is one of our top priorities.
We need you to update your account information for your online banking to be re-activated
please update your billing information today by clicking
here Chase Online After a few clicks,
Please don't reply directly to this automatically-generated e-mail message.
Online Banking Team
Rather than pointing to chase.com, the link actually points to:
The phishing page was being hosted on a compromised and otherwise legitimate website; the page has since been removed.