JPMorgan Chase revealed last week that 76 million households were affected by a cyberattack against the bank this summer.
The nation’s largest bank said there is no evidence that hackers stole account numbers, passwords, birth dates or Social Security numbers. But they did get names, addresses, phone numbers and e-mail addresses. That’s still a problem.
Hackers will likely sell that information on the black market, says Gartner security analyst Avivah Litan. Then scammers will try to use the data to trick you into giving up more personal information so they can steal your money or open new credit card accounts in your name.
The four things Chase customers need to watch out for:
1. Don’t click on e-mailed links.
After big data breaches, scammers start sending out e-mails. The emails may mention Chase, or past breaches. Never click on any links. Malware could be downloaded to your computer and steal account passwords and other information, Litan says.
2. Watch your snail mail, too.
Scammers could also send letters. Some might claim you’ve won a tablet, vacation or other prize and give you a phone number to call. Don’t do it. It’s probably a way to get more personal information from you.
3. Hang up and ignore texts.
Since phone numbers of Chase customers were stolen, be wary of calls asking for account numbers or other information. Crooks are sending texts now, too, so don’t click any links from numbers you don’t know. “You can’t trust any communications anymore,” Litan says.
4. Watch for small charges.
Crooks will charge smaller amounts to your credit card, usually under $10, to see if you notice, then charge a bigger amount later. It’s best to check online statements for suspicious activity once a week. But if you don’t have time for that, scan statements every month. “It’s a pain in the neck,” says Litan, “but that’s what you have to do.”
