Am I in any danger after this phishing attempt?
March 30, 2006 11:36 PM Subscribe
I've fallen for a phishing attempt. Based on what they may have, what do I do now?
posted by anonymous to Computers & Internet (17 answers total)
I normally consider myself at least competent at noticing phishing attempts in my email and forwarding them to the appropriate abuse address (hi, PayPal scams). However, after coming home tired earlier this week, I fell prey to a scam.
The email purported to be from Chase financial. It mentioned that my account had recently been accessed from several locations (which is true, I've done that) and that there had been a wrong password entered at least once (also true). It directed me to a page that I should have immediately noticed was suspicious -- it had text entry for my first and last name, social security number, and credit card number.
I don't have a credit card through that company so I kind of paused and looked at it. I had started to enter data before my brain clicked and I thought, "Wow, this isn't right." I had my name entered along with my SSN (which was auto-populated by my browser, damn that convenience). I entered nothing in the credit card fields. I was planning on closing the browser but then absent-mindedly clicked submit first. Then I slammed my head into the desk repeatedly.
Obviously I'm kicking myself for this entire thing, so be kind on the advice. I consider this a fluke and this is the only time in my life I've done such a thing -- I shy away from entering most information online, even on secure financial sites. My question is this: how much damage can a phishing operation do with my name and SSN? I am considering putting a fraud check on my credit, but this could be more of a pain than a cure since I have plans to open up at least one line of credit in the coming months. Without any other information, and with the knowledge that these individuals will likely be preoccupied with the credit card numbers they likely harvested, am I at that much of a risk? I can only guess that they could attempt to open new accounts with my name, but
I don't believe this is possible with the little information they have.