Cigna has notified Purdue Human Resources that some customers have reported receiving automated calls and phishing emails that appear to be coming from JP Morgan Chase. These contacts ask for account information, and Purdue employees should not respond to these messages.
“The issue of concern for us is that the administrator for our employee health savings accounts has changed from JP Morgan Chase to PayFlex for 2013. We don’t want employees to fall prey to one of these phishing scams in the belief that the email legitimately relates to the HSA change,” according to Eva Nodine, benefits manager in Human Resources.
ITaP Security and Policy warns the Purdue community that the University has been specifically targeted by spear phishing attacks made to look like they are coming from Chase bank asking for account information. These emails are not being sent from Chase bank. Report computer incidents to Purdue: http://www.purdue.edu/securePurdue/incidentReportForm.cfm
For questions concerning this advisory, please send email to: email@example.com
Posted by Cherry Delaney on January 14, 2013, in Secure Purdue News.