NEW YORK (AP) — JPMorgan Chase revealed this week that 76 million households were affected by a cyberattack against the bank this summer.
The nation's largest bank said there is no evidence that hackers stole account numbers, passwords, birth dates or Social Security numbers. But the hackers were able to get access to customers' names, addresses, phone numbers and email addresses.
That's still a problem. Hackers will likely sell that information on the black market, says Gartner security analyst Avivah Litan. Then scammers will try to use the data to trick you into giving up more personal information so they can steal your money or open new credit card accounts in your name.
Here are four things Chase customers need to watch out for:
1. DON'T CLICK ON EMAIL LINKS
After big data breaches, scammers start sending out emails. The emails may mention Chase, or past breaches. Never click on any links. Malware could be downloaded to your computer and steal account passwords and other information, Litan says.
2. WATCH THE MAILBOX TOO
Scammers could also send letters. Some might claim you've won a tablet, vacation or other prize and give you a phone number to call. Don't do it. It's probably a way to get more personal information from you.
3. HANG UP THE PHONE AND IGNORE TEXTS
Since phone numbers of Chase customers were stolen, be wary of calls asking for account numbers or other information. Crooks are sending texts now too, so don't click any links from numbers you don't know. "You can't trust any communications anymore," Litan says.
4. DON'T OVERLOOK SMALL CHARGES
Crooks will charge smaller amounts to your credit card, usually under $10, to see if you notice, then charge a bigger amount later. It's best to check online statements for suspicious activity once a week. But if you don't have time for that, scan statements every month. "It's a pain in the neck," says Litan, "but that's what you have to do."
Follow Joseph Pisani at http://twitter.com/josephpisani