JPMorgan Chase said last week that cybercriminals had compromised its systems and obtained customer names, phone numbers and email addresses for 76 million households, and as a result people will be concerned about how their data is being used following the breach. But one recent article suggested that phishing scams are a possible outcome, and in the case of JPMorgan Chase, we can confirm that there is no need for concern. JPMorgan Chase has been one of the very first early adopters of the email security standard called DMARC – the email security control that prevents malicious emails from ever reaching consumers. In fact, the Agari solution JPMorgan uses has stopped millions of email attack attempts from ever reaching consumers, even before the bank’s data breach. Agari also protects JPMorgan Chase customers from fraudulent “your account may have been compromised” emails. Since JPMorgan Chase has been a clear leader in protecting consumers via email, we thought it was important to shed some light on the facts.
As we’ve seen with the JPMorgan breach first disclosed in August, and the recent headlines about the Home Depot and Target cyberattacks, cybercriminals are getting smarter every day, leaving consumers and companies wondering what proactive steps they should take to protect their information. One of the most important things consumers can do to keep their information safe is to be knowledgeable about emails and attachments they’re opening. If anything looks fishy, don’t risk it – take just a few moments to determine that the source is legitimate, paying attention to red flags such as spelling and grammatical errors. If you’re in doubt, always check directly with your bank through the website or phone number you usually use to contact them, and don’t click on suspicious links. In this day and age, the previous advice is just good, common sense, and while we’re probably all tired of hearing it, it bears repeating.
Finally, keep in mind this fact: There have been no reports of successful email attacks where companies were using DMARC, and JPMorgan has been a key player in paving the path for many global brands to adopt this breakthrough technology. If a consumer does receive a phishing email from a company that has deployed DMARC successfully, it is typically because they have an email inbox with an Internet Service Provider that isn’t using the basic email security standards that include DMARC. Consumers having an email inbox with any provider that supports the DMARC standard would never get those phishing emails in the first place. Best-in-class mailbox providers that trust Agari with their email data to protect customers already include Facebook, Google, Linkedin, Microsoft and Yahoo, among others. Consumers ought to be concerned about the ongoing litany of data breaches, but they can be confident that they’re protected from email cyberattacks such as phishing if their inboxes are protected by DMARC and they are interacting with a brand that is also protected by DMARC. And JPMorgan’s customers are already protected.
Take a look at our latest Email TrustIndex to find out which brands are leaders in email best practices, preventing malicious emails from ever reaching your inbox.