# secure-chase.com-restrict.page — SUSPICIOUS > PhishDestroy identifies secure-chase.com-restrict.page as a banking phishing domain impersonating Chase Bank with credential theft tactics. ## Summary PhishDestroy identifies secure-chase.com-restrict.page as a credential theft site masquerading as Chase Bank’s login portal. When accessed, the page mimics the bank’s branding to trick users into submitting their online banking username and password. Attackers then harvest these credentials to drain accounts, transfer funds, or commit identity theft. The site uses social engineering to bypass security awareness, relying on urgency or fear (e.g., account suspension warnings) to rush victims into action without verifying the domain’s legitimacy. This domain was flagged by PhishDestroy due to multiple red flags: it resolves to IP 124.198.132.188 and is detected by 3 of 95 VirusTotal security vendors as malicious. While the exact creation date and registrar are not publicly disclosed, the domain’s structure—including the use of “restrict.page” in the subdomain—suggests a recent, hastily deployed campaign targeting Chase customers. Such domains are often registered via privacy-protected services to evade takedown efforts and remain active for only a few days or weeks. If you visited secure-chase.com-restrict.page, immediately stop and check your Chase account for unauthorized transactions. If you entered any login credentials, change your Chase password and enable two-factor authentication (2FA) immediately. Report the incident to Chase’s fraud department and monitor your accounts for suspicious activity. Avoid clicking links in emails or messages claiming to be from Chase—always navigate directly to chase.com or use the official mobile app. If you suspect your device is compromised, run a full antivirus scan and consider resetting passwords stored in your browser. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 124.198.132.188 ## Detection Status - VirusTotal: 3 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/5cfc04f2-7c7a-4f42-9164-5d1f47e93f31 - PhishDestroy: https://phishdestroy.io/domain/secure-chase.com-restrict.page/ - LLM endpoint: https://phishdestroy.io/domain/secure-chase.com-restrict.page/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/secure-chase.com-restrict.page/ Last updated: 2026-03-22