Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

Home    About    New Articles    RSS Feed    Subscriptions    Contact
Bookmark and Share

Issue 151 - April, 2013 (1st Edition) - Page 12

ACH Processing Service Malware Email

Issue 151 Start Menu

Previous Article            Next Article

Message purporting to be from the Automated Clearing House (ACH) claims that a file submitted by a user has been successfully processed and invites recipients to click a link to read more information about the large sum transactions listed.

ACH Malware


Brief Analysis
The email is not from ACH and the transactions listed in the message are not genuine.  The link in the email opens a compromised website that harbours information-stealing malware.

Bookmark and Share
ACH file ID "111.890" has been done with errors

ACH Processing Service

SUCCESS Information
We have successfully processed ACH file 'ACH2013-03-20-7.txt' (id '111.890') submitted by user *********' on '2013-03-20 2:47:64.0'.


Item count: 32
Total debits: $6,268.00
Total credits: $6,268.00
For more info visit this link

ACH Processing Service Malware

Detailed Analysis
This email, which purports to be from the Processing Service at America's Automated Clearing House (ACH), claims that a file submitted by a user has been successfully processed. The message includes a summary of the file that lists large sums of money as total debits and credits. Users are invited to follow a link to find out more information about the processed file and transactions.

However, the message is not from ACH and the information about a supposed file is nothing more than the bait used to entice recipients into clicking the link. In fact, the message is an attempt to trick users into infecting their computers with malware. 

The criminals responsible for this attack hope that at least some recipients, panicked by the large sums of money mentioned in the bogus email, will click the link without due forethought.

Those who do click the link will be taken to one of several websites that harbour malware. Once downloaded, such malware can typically make connections with remote servers controlled by criminals, download and install further malware components and harvest personal and financial information from the infected computer.

Scammers have targeted the ACH and the entity's managing body NACHA for several years. Some have been malware attacks such as this one. Others have been phishing scams intent on tricking people into divulging their personal and financial information. The ACH is an official funds transfer system that processes large volumes of credit and debit transactions in the United States and this makes it an attractive target for scammers.

Neither ACH nor NACHA will ever send you an unsolicited email that asks you to open an attachment or follow a link and supply personal information. If you receive an email that claims to be from the ACH or NACHA, do not open any attachments that it may contain. Do not follow any links in the email. Do not reply to the email or supply any information to the senders. 

Bookmark and Share

Last updated: March 22, 2013
First published: March 22, 2013
By Brett M. Christensen
About Hoax-Slayer

ACH Payment Canceled Malware Email

Previous Article            Next Article

Issue 151 Start Menu

Pages in this issue:
  1. Viral Facebook Message Falsely Claims that a Pictured Man is Posing as an RSPCA Officer and Stealing Dogs
  2. 'Bad Brit' - Nigel Farage and the Tory Party's Worst Nightmare
  3. Digital Pad ATM Skimming Device Warning
  4. UK National Lottery Scams
  5. Gun Owner Vehicle Tagging Hoax
  6. Carol's Story - Dating Scam
  7. Message Calls For Boycott of Starbucks For Its 'Attack on Traditional Marriage'
  8. Ransomware Warning
  9. Use Left Ear For Mobile Phone Hoax
  10. Bogus Warning - White Transit Van 'RH57 WSU' Trying To Steal Dogs
  11. Urban Legend - Couple Arrested at Airport with Dead Baby Stuffed With Drugs
  12. ACH Processing Service Malware Email
  13. Baby With Bong Protest Message
  14. Linda Singh - Blackberry Money for Forwarding Hoax
  15. Hoax - 'Punjab Rape Festival'
  16. Beware - 'Unsealed' Product Giveaways on Facebook
  17. DHL Notification Malware Email
  18. Fake CNN Emails About Pope Point to Malware
  19. Angolan Witch Spider - Giant Spider Hoax
  20. Bogus Health Warning - Scratch Card 'Silver Nitro Oxide' Coating Causes Skin Cancer
  21. March 2013 - Five Fridays, Five Saturdays, Five Sundays
  22. Australian Tax Refund Scam Email
  23. 'Confidential Document' Google Docs Phishing Scam