Fake ACH Transfer Notification
Fake ACH Transfer Failure Notifications Spread ZeuS
A new wave of spam emails are targeting business users and attempt to infect them with a variant of the ZeuS banking trojan by posing as ACH transfer failure notifications.
According to researchers from antivirus vendor Trend Micro who analyzed the campaign, the emails purport to come from NACHA – The Electronic Payments Association, the regulatory agency for the Automated Clearing House (ACH) network.
The ACH network is commonly used by companies to process large volumes of credit and debit transactions, such as payroll or vendor payments, in batches.
According to Gary Warner, director of research in Computer Forensics at the University of Alabama at Birmingham (UAB), the emails have subjects like “ACH transaction cancelled”, “ACH Transfer rejected”, “Your ACH transaction” and other such variations.
The body message is always the same and reads: “The ACH transaction , recently initiated from your bank account (by you or any other person), was rejected