|
Notice to Our Business
Customers
Recently, some corporate clients have
received a fraudulent e-mail appearing to be sent from NACHA - The
Electronic Payments Association. This fraudulent e-mail contains
the Subject line "Rejected ACH Transaction" and indicates an ACH
transaction was rejected and that the corporate client should review the
transaction by clicking on the provided hyperlink. This hyperlink
directs the corporate client to a potentially malicious web site that is
designed to appear as the official NACHA web site. If visited,
this fraudulent web site could be used to install malware on your
corporate workstation.
A common scenario is: the attacker
sends a "spear phishing" email which includes either an infected file or
a link to an infectious web site. The person receiving the file is
usually someone who can initiate fund transfers on behalf of the
corporate business. Once the receiver opens the attachment or
navigates to the web site, malware is installed on the user's computer.
This malware contains a key logger, which collects the user's online
banking credentials. These credentials are used to either
establish another user account or directly initiate fund transfers as
the legitimate user.
Remember to always use caution when
opening any email or link from an unknown source. For additional
information on how to protect yourself and your company from phishing
schemes and business identity theft please visit
www.OnGuardOnline.gov.
Online Banking
|
