An
Email with the Subject "Thank you for scheduling your online payment" was
received in one of Scamdex's honeypot email accounts on Tue, 07 Apr 2015 08:21:32 -0700
and has been classified as a Generic Scam Email.
The sender shows as user <no-reply@alertsp.chase.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => mxw@o7e.net
[delivery-date:] => Tue, 07 Apr 2015 08:21:32 -0700
[received:] => from [2.187.33.79] (port=62978 helo=alertsp.chase.com)by bigcat.newsblaze.com with esmtp (Exim 4.85)(envelope-from )id 1YfVJE-0005pD-Hmfor mxw@o7e.net; Tue, 07 Apr 2015 08:21:32 -0700
[message-id:] => <5523F5DC.119226B1@alertsp.chase.com>
[date:] => Tue, 07 Apr 2015 19:51:00 +0300
[from:] => user
[mime-version:] => 1.0
[subject:] => Thank you for scheduling your online payment
[to:] =>
[content-type:] => multipart/mixed;boundary="=_------------030806010809070705050103"
[x-spam-status:] => No, score=2.2
[x-spam-score:] => 22
[x-spam-bar:] => ++
[x-ham-report:] => Spam detection software, running on the system "bigcat.newsblaze.com",has NOT identified this incoming email as spam. The originalmessage has been attached to this so you can view it or labelsimilar future email. If you have any questions, seeroot\@localhost for details.Content preview: E-mail Security Information. Dear Thank you for scheduling your recent credit card payment as an attachment. Your payment in the amount of 3898.96 will be credited to your credit card account (CREDIT CARD) ending in 9667 on 04/07/2015. [...] Content analysis details: (2.2 points, 4.5 required) pts rule name description---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: chase.com] 0.9 SPF_FAIL SPF: sender does not match SPF record (fail)[SPF failed: Please see http://www.openspf.org/Why?s=mfrom;id=no-reply%40alertsp.chase.com;ip=2.187.33.79;r=bigcat.newsblaze.com] 0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)[SPF failed: Please see http://www.openspf.org/Why?s=helo;id=alertsp.chase.com;ip=2.187.33.79;r=bigcat.newsblaze.com] 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to background 1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
[x-spam-flag:] => NO
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Thank you for scheduling your recent credit card payment as an attachment. Your payment in the amount of 3898.96 will be credited to your credit card account (CREDIT CARD) ending in 9667 on 04/07/2015.
Now that you're making your payment online, are you aware of all the convenient ways you can manage your account online?
See statements - Choose to stop receiving paper statements, and see up to six years of your statements online.
See automatic payments - Set up monthly payments to be made automatically.
Transfer a balance - Transfer a balance to your credit card account.
Go to Personalized Alerts - Schedule Alerts to remind you of key account activity.
You can also see past payments you've made online by logging on to www.chase.com/creditcards and clicking "See/cancel payments" under "I'd like to ..."
If you have questions, please call the Customer Service number on the back of your credit card.
Thanks again for using online payments.
Sincerely, Cardmember Services
E-mail Security Information
E-mail intended for your account ending in: 9667.
If you are concerned about the authenticity of this message, please click here or call the phone number on the back of your credit card. If you would like to learn more about e-mail security or want to report a suspicious e-mail, click here
Note: If you are concerned about clicking links in this e-mail, the Chase Online services mentioned above can be accessed by typing www.chase.com/creditcards directly into your browser.
ABOUT THIS MESSAGE: This service message was delivered to you as a Chase Credit Card customer to provide you with account updates and information about your card benefits.
If you want to contact Chase, please do not reply to this message, but instead go to www.chase.com/creditcards . For faster service, please enroll or log in to your account. Replies to this message will not be read or responded to.
Your personal information is protected by state-of-the-art technology. For more detailed security information, view our Online Privacy Policy. To request in writing: Chase Privacy Operations, 451 Florida Street, Fourth Floor, LA2-9376, Baton Rouge, LA 70801
® 2015 JPMorgan Chase & Co.
