Protect: Never do it. Never Ever do it.

Another Bank Scam

I received an email again today from Chase Bank - supposedly. The 'from address' was:



I use a picture so you cannot accidentally click the email. Note it says Chase, but the actual email has nothing to do with Chase Bank. Also notice that the "Undisclosed-Recipients" means this email was sent to 100's maybe 1000's of people using the BCC email field, (Blind Carbon Copy).

Using BCC is something you should never do anyway, except on a very limited basis. You should use a Mailing Program that protects your prospect. Using BCC blinds the recipient of the other email addresses but the Hacker, he can get to it. Using a Mailer program allows you to quickly and easily mail 100s of prospects each their own individual email.

The email has 3 major flaws. Here it is:

Flaw number one - I have not been a Chase customer for about 10 or 15 years. They stole my customer info a long time ago. 

Flaw number two - Improper English. It should say "sign in with the button below". In addition to improper English, banks never ask (via a button) for your sign on information. What you should always do is leave your email program and sign on to your bank yourself from your browser. Do not click the link.

Flaw number three - By hovering over the button we can see the underlying URL. It does not look at all legitimate, does it?

Now clicking links in emails does not have to be dangerous. There is a banner at the top of this email that I put in that you can click. But never click any links in emails that take you to your sensitive sites like banking, social security, retirement funds, investment funds, PayPal, credit cards or other payment processors.