Comments on: Chase’s completely insecure and broken “secure” document exchange system (aka securedx, secure-dx)

By: CAM

CAM — Sun, 21 Feb 2010 19:38:08 +0000

Also WaMu-to-Chase, here. Going through this right now, with added annoyances.

After logging into sdx.chase.com, I get the screen that contains the pdf link. The screen says “If the list of transactions contains all the items you wish to dispute, you can fax or mail back the form, simply print the pdf attachment and follow the instructions within the document.”

Well. There are no instructions within the document. None. Which strikes *me* as a clever way to minimize the number of claims that are actually completed by consumers. I call Chase and have a mostly unhelpful session in which I am repeatedly told “What you have received is a blahblahblah form, notifying you of blahblahblah.” I keep trying to explain that I have received two messages from Chase: one of which is the pdf the CSR refers to, the other which tells me that I am supposed to return the pdf and that the pdf itself is supposed to contain instructions for doing so.

Ultimately, she told me that because my claim was for less than $100, I do not need to return an affidavit. I see that tidbit nowhere in the information I’ve received.

Bonus rounds:

The fraudulent charge was paid to brzsupport.com which is some porn subscription service. Exactly a week earlier I found a pending charge from the same site — brzsupport.com — and immediately emailed Chase. The next morning it was gone. The CSR told me the charge appeared because someone somewhere *mistakenly* provided my card number and that there hadn’t been an actual case of fraud. That they had taken care of it before it went through. And yet, here I am. (For more on brzsupport.com: http://www.complaintsboard.com/complaints/brazzers-support-servces-brzsupportcom-c309068.html )

Plus, Chase apparently double charged a vast number of people who made purchases on a particular day in January, me included. See: http://www.yelp.com/topic/west-hollywood-if-you-bank-with-chase-please-check-to-make-sure-that-you-werent-double-charged-last-night.

Aaaaaawesome.

By: Bill

Bill — Mon, 15 Feb 2010 17:34:56 +0000

@Paranoid People

I think the analogy would be that you received a letter from a company you’ve never heard of, delivered by a company you’ve never heard of. The scenario you stated would be correct if the email contained a link to your bank. The real question for me is whether this site asks for sensitive info or just displays documents to the user.

By: Paranoid People

Paranoid People — Mon, 08 Feb 2010 16:22:13 +0000

I just received a package from a company called DHL, and when I opened it I found a letter from a bank. Should I be paranoid and ignore the letter…lol…never read so much paranoid drivel as on this thread!

By: Joe S

Joe S — Thu, 04 Feb 2010 17:38:56 +0000

click on the sdx chase URL in the email they send. click on “forgot my password”. when that comes up click on request new password. The new password they send will be the same as the old password but it will work. at least it did for me.

By: Richard B

Richard B — Thu, 04 Feb 2010 05:35:15 +0000

Damn, I too found this site via Google search of secure-dx. Google favors you :p

Anyways, my story is similar to yours. I even went to my local branch in Miami and one of the bank specialist actually told me that secure-dx is in no way related to Chase and that the claim number in the e-mail was not even under my name. I told him that I was going to go to my local police station and file a report, so that they could track whoever owned secure-dx and gang rape them with the FBI.

After reading this, I’m even more disappointed that it is not a real scam, but just an embarrassing security flaw. A very big one. In fact, Chase should fire its IT guys and security advisers. Out of a cannon. And into the sun!

By: Reynaldo Alicea

Reynaldo Alicea — Wed, 03 Feb 2010 21:14:25 +0000

lost my card sometime during last week got my card back today when i went to put gas in the car the card was declined called up chase to see what the problem was come to find out there was a negative balance of $130 someone had used my card to purchase things chase was nice enough to help me out on the phone now hopefully they can rectify the negative balance that someone made on my account.

By: Sharon Spurrier

Sharon Spurrier — Mon, 01 Feb 2010 17:39:20 +0000

My story is no different .

I was pretty amazed that someone got a hold of my credit card number in a different country
I reported the fraud with chase, and they are taking care of the problem.

By: Anonymous

Anonymous — Thu, 28 Jan 2010 16:06:03 +0000

My story’s no different.

It’s pretty pathetic that Chase’s procedure initially appears to be blatant fraud, but turns out to be legit. An actual fraud would undoubtedly be more clever.

By: David Lenz

David Lenz — Wed, 27 Jan 2010 05:43:17 +0000

I had the exact same thing. Fraud on card, called, was told about secure document sharing and the whole deal smelled fishy. I got the same paranoia, wondering how big could this be? But, you’ve put my fears to rest. Good grief Chase! My plan is to never use my debit card ever again.

By: gmc

gmc — Tue, 26 Jan 2010 00:41:25 +0000

Telling me the website is that of Chase and is safe, in fact I am opening myself to further fraud.

By: gmc

gmc — Tue, 26 Jan 2010 00:39:59 +0000

How do I know this isnt a fraud cover for the warning I reached when investigating my atm problems…….????

By: Helen

Helen — Fri, 22 Jan 2010 21:07:24 +0000

I had the same debit card fraud. Someone has used the debit card in California, nearly $1000.0 in motorcycle sport store.

We have never used this card physically.

Another point is the 1866 claim dept phone number hardly worked, once we entered the debit card and pin number, it always hang up and cannot connect through. While, this maybe a way the information can be stolen.

For those of you have trouble to get through, send your claim letter to,
P.O. Box 620002
Internal Mail TX1-2551
Dallas, Texas 75262-9802

Customer Claim Department
Phone: (866)564-2262 Fax: (866)701-9886

But Chase database must have been compromised somehow. This is the conclusion.

By: Thomas Glen

Thomas Glen — Fri, 22 Jan 2010 17:24:28 +0000

I also freaked out over the secure-DX domain, and thought I was being scammed. Thanks for the blog post – there isn’t a lot of other info on this out there. Shame on Chase for using such a poor security system – if they really need to outsource this, they should arrange for them to use a chase.com subdomain.

By: Dean

Dean — Fri, 22 Jan 2010 15:00:03 +0000

I have worked 2 hours trying to reset my password with chase. if you ask them for a print out they send you something that does not identify the charges, if you call customer service you get and endless loop message, if you go on line you get a help desk that is no help. I use this site for unemployment debit card. No one seems to know what is going on. Why does the stae of texas use this shitty company

By: dustin

dustin — Fri, 22 Jan 2010 07:44:50 +0000

I got these emails as well, but I went into a branch just to tell them I hadn’t received any money from an ATM. No suspicious charges. In fact, the $20 I never got is already in my account hours later. But Firefox wanting to block this site is a little strange and led me here. I guess it’s legit, but I sure as hell searched for it before logging in. They didn’t tell me I had to do anything, so I’m just going to delete the emails.

Oh, and my password did seem to be a random character generation, so at least they “fixed” that.

By: Jk56k

Jk56k — Fri, 22 Jan 2010 03:21:34 +0000

It actually is a scam.

By: Alex

Alex — Thu, 21 Jan 2010 01:06:14 +0000

FF wouldn’t let me to the site.

IE let me right it.

Whaddya know…

By: Demetrius Ethridge

Demetrius Ethridge — Wed, 20 Jan 2010 21:01:46 +0000

CHASE

By: Demetrius Ethridge

Demetrius Ethridge — Wed, 20 Jan 2010 20:50:00 +0000

THANKS CHASE

By: Luis

Luis — Wed, 20 Jan 2010 02:39:03 +0000

Wow/wow. this chase really stink,I’m going through the damn idiotic scam of chase bank.
I previously had my runs down with chase,but this the ultimate of a consumate and fool
thieves they are.not way thats why banks are going through these hard times.it is an
institution create to rob your money legally and with not much to do abour it.lets hope this
gives them an awareness of they jointly scam with the other company involved.

By: Demetrius Ethridge

Demetrius Ethridge — Wed, 20 Jan 2010 01:02:10 +0000

I have tto be very careful because these days people will get a hold to your credit cards debit cards ues it without a care in the world so now im aware that your id can get stolen at anygivin time so now im careful about were im using my card and were im keeping my card

By: JB

JB — Tue, 19 Jan 2010 23:50:35 +0000

I wanted to add… I did have Pay Pass on my card and it never leaves my pocket and is really only used at my local gas station and grocery stores. However I did use my card at the local pumpkin patch this year when (I am wondering if that is when they got my number?) I needed a few extra bucks for the kiddie rides for my kid…. hum???

By: JB

JB — Tue, 19 Jan 2010 23:40:06 +0000

Same story here!… I’m in Cali and a former WaMu clinet. Called chase from the 800 number on the back of my debit card after my debit card was coming up declined. Found out some yahoo in IL charge 600 bucks at the local Pilot gas station. Called and talked with chase they said I had to wait for the transaction to post to my account and they would cancel my card and send me a new one. I called back after the charge posted to my account and now I was faced with the untrusted sited thanks to firefox. I googled the 800 number in the email and this site came up. After reading up on the issue I went ahead and logged into the chase.secure-dx.com. (I got my two emails form chase, however they no longer use password”) I went ahead and logged in and I did not used my real phone number when prompted for my for it. I got my form with my disputed transaction already on it, printed it out finish filling it out and faxed it in.
I got to say I am REALLY unhappy about this and I will be switching back over to my credit union. I miss WAMU and do not trust chase one bit.

By: Johne

Johne — Mon, 18 Jan 2010 22:27:20 +0000

Thanks for the information. I wasn’t going to sign in, but I’m glad I did.

Everything is OK with this site, not really it should be linked to chase.com.

WOOOOOOOO disputed a charge, and got the 87 dollar charge back and 3 over draft fees.

Total of 186.00 added to my account, oh yeah.

By: Jennie

Jennie — Sun, 17 Jan 2010 04:14:54 +0000

Thanks for the information. I just had two Wal-Mart charges to my account for $100 each in Urbana, IL. I called Chase to make a claim and had the same problems as everyone above. I too was a WAMU customer for many years and never had any problems. As soon as Chase took over, I have had nothing but problems. I was disappointed with Chase before this happened and now I am really upset. How can this have been going on for so long. I am closing my account as soon as I get my money back. I don’t feel that anything with Chase is secure.

By: Scott

Scott — Sun, 17 Jan 2010 03:04:17 +0000

I hate Chase as much as anybody, they can go to hell, but you are being paranoid. The forms they send are blank. Once you fill any information on them you have already changed the password.

Big banks SUCK!! They don’t care about you unless you are a multi-millionaire. Join a local credit union.

By: JaSon

JaSon — Fri, 15 Jan 2010 18:43:34 +0000

One last Fuck Chase

By: JaSon

JaSon — Fri, 15 Jan 2010 18:41:47 +0000

Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase Fuck Chase

By: Jim

Jim — Thu, 14 Jan 2010 21:39:59 +0000

Add me to the list. I contacted Chase about a charge on my debit card. They said I would get a temporary credit, which I did. Then a few hours later these emails arrived from chase_customer_claims@secure-dx.com. I work at company that is very security conscious, so this email address immediately raised red flags. It’s not from Chase.com and it directs me to a non-Chase website that triggers a security alert for phishing in firefox. Then it asks you to create an account on that site. I called Chase expecting them to tell me this was not legit. I was surprised when the rep told me this was a 3rd party they use for this service. She was not very nice and seemed annoyed with my questions. I got the feeling they are asked about this all the time. I forwarded the email to abuse@Chase.com and told them I refuse to go to this site. I asked for something to be sent from Chase.com or for them to mail whatever it is they want to send. If the person who I talked to when I called in the dispute told me to expect this email and told me it would come from this non-Chase address I may have gone along. I would expect a bank of all places to be more concerned with security and avoiding the appearance of a scam!

By: Chase Debit Fraud

Chase Debit Fraud — Thu, 14 Jan 2010 06:19:36 +0000

On Jan. 8, 2010 I was also hit with a fraudulent purchase at a K-Mart for $ 325.00 and then a subsequent attempt at a Wall-mart the same day for $700 in Riverside, CA. Fortunately, Chase did put a stop on the second attempt and I have since cancelled my debit card- but for Chase to credit back my account on the first purchase, I had to go through the same process all of you have been subject to. The result is- my web browser blocks access to the site. Now I am greatly disturbed and concerned by what I have discovered about Chase and secure dx.com reading the testimonials on this site.

We are in deep trouble if we as a country can’t create an online banking system that solves problems safely and efficiently- this is fundamental !