November 10, 2011

ACH debit transfer emails leading to malware

Users should be cautious if they receive an email purportedly containing information about an Automated Clearing House (ACH) debit transfer created on their behalf, as it could lead to malware, researchers from anti-virus company MX Lab, said in a blog post Wednesday. Attackers have been circulating a trojan in emails containing subject lines such as: “ACH payroll payment was not accepted by Central Trust and Savings Bank.” The messages direct users to click on a link to review the transaction details, which lead to a site where malware is hosted. The malicious code executes several Windows registry changes and establishes a connection with the attackers' IP address.
Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

Oracle releases Java update to close 37 high-risk vulnerabilities

Updates for the software platform will now arrive on a quarterly basis, beginning in October.

Flaw in BlackBerry Protect app addressed, impacts Z10 smartphone users

To exploit the vulnerability, an intruder would need a user's device password and a bit of skill to access troves of data on the phone.

Tor to blame for its users being unable to access Facebook

Malicious activity on the anonymity software's network tripped Facebook's "site integrity systems."