Application security, Malware

ACH debit transfer emails leading to malware

Users should be cautious if they receive an email purportedly containing information about an Automated Clearing House (ACH) debit transfer created on their behalf, as it could lead to malware, researchers from anti-virus company MX Lab, said in a blog post Wednesday. Attackers have been circulating a trojan in emails containing subject lines such as: “ACH payroll payment was not accepted by Central Trust and Savings Bank.” The messages direct users to click on a link to review the transaction details, which lead to a site where malware is hosted. The malicious code executes several Windows registry changes and establishes a connection with the attackers' IP address.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.