Published on February 22nd, 2018 | by William Charles67
[Confirmed & “Resolved”] Reports Of Significant Security Issue With Accounts At Chase
- We’re still investigating now, but at this point believe it was extremely limited in scope – Trish Wexler, spokesperson for JPMorgan
Wexler also went on to say that they know of no unauthorized transactions but would work with any customers to resolve any problems. It should be noted that there are reports of unauthorized transactions being made on people’s accounts who also logged in and saw somebody else’s account (see the original reddit post) this is contrary to the Chase statement.
There are some concerning reports coming out from customers with
deposit accounts at Chase (seems to not be limited to only deposit accounts). To summarize the issue a number of people have logged into their accounts as normal, only to find that they have been logged into an entirely different person’s account (somebody they have no relation to). To make matters worse it seems that when you’re logged into somebody else’s account you’re able to make transfers and access other information. Some people have reported that they have logged into their own accounts only to find that unauthorized transactions have been made.
Reports first started to come in on reddit’s personal finance subreddit, but boarding area blogger fly and dine has also reported the same issue. It seems that this might be a caching related issue (something similar happened to Steam) and one of the causes is actually logging in, so I’d recommend that all readers avoid logging into their Chase accounts at this stage (although keep in mind that’s speculation at this stage). We’ve reached out to Chase for comment.
Someone just called me and gave me a heads up she was in my account
— Swizzy425 (@El425) February 22, 2018
I just signed into my @Chase account using my username and password and got logged in to someone else’s Checking and Credit Card. Sounds like a great secure system you got there, dummies! cc: @ChaseSupport
— HD Retrovision (@HDRetrovision) February 22, 2018
It definitely let my husband and I into someone else’s account. The CS rep tried to tell us she couldn’t log the incident and that it didn’t happen.
— Lauren Thompson (@lsobon) February 22, 2018
Just logged into my @Chase account to find that I had been logged into a total stranger’s account. When I called to let them know, all they could say was, “Yes, we are aware of this issue and are working on it.” WHAT?!
— Laura (@laurughhh) February 22, 2018
Just logged into my @Chase online account with my username and password, got in & was connected to someone else’s account. @ChaseSupport told me this is a known issue. Very scary! Log into your account, make sure everything is OK. Add 2-factor authentication.
— chris lindsay 🇺🇸 (@clindz) February 22, 2018
— Matt Kaspar (@MAKaspar) February 22, 2018
— Kyna Moser (@kynamo) February 22, 2018
.@Chase I just used my fingerprint to open your Android app and when the app opened I was logged into someone else’s account. I can’t reproduce the behavior, but that’s irrelevant.
— Scott Dafforn (@scottdafforn) February 22, 2018
@Chase @tim_cook i went to login to my chase account using face id and i somehow logged into someone else’s account…someone i don’t know. I quickly logged out but i think that’s a security feature chase should look at.
— Michael Kanik (@kanik89) February 22, 2018
@Chase WTF Just got access to a strangers account instead of mine using my credentials on your app. Tech support said don’t worry about it! How to not worry? Is there a stranger in my account too?
— Paul #2 (@PaulsHatWorks) February 22, 2018
Shocked to see someone’s account opened in my @chase mobile application
— RGV (@rgvzoomedinn) February 22, 2018
If you were affected, please share your story in the comments.