There has been reports of new phishing e-mails claiming to be from NACHA (the Electronic Payments Association). This e-mail directs the recipient to click on a link that will take them to a website that will likely install malicious software (malware) onto the recipients computer. The intention is to steal personal information, login credentials, financial details, and more.
= = = = = = = = Sample Phishing E-Mail = = = = = = = = =
[mailto:firstname.lastname@example.org] Sent: Tuesday, February 22, 2011 7:32 AM
To: Doe, John
Subject: ACH transaction rejected
The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.
Please click here to view report.
NACHA Phishing Alert – Emails claiming to be from NACHA
NACHA is the Electronic Payments Association. They have received reports that individuals and/or companies have received a fraudulent email having the appearance of being sent from NACHA. The subject line of the email states: “Unauthorized ACH Transaction”. The email includes a link that redirects the individual to a fake Web page and contains a link that is almost certainly an executable virus with malware. Do not click on the link. Both the email and related website are fraudulent.
NACHA does not send communications to individuals or organizations about individual ACH transactions.
Always use anti-virus software and be aware of different variations of fraudulent emails. If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.
= = = = = = Sample Email = = = = = = = = =
Sent: Thursday, July 22, 2010 8:27 AM
Subject: Unauthorized ACH Transaction
Dear bank account holder,
The ACH transaction, recently initiated from your bank account, was rejected by the Electronic Payments Association. Please review the transaction report by clicking the link below:
Unauthorized ACH Transaction Report