Application security, Malware

ACH debit transfer emails leading to malware

Users should be cautious if they receive an email purportedly containing information about an Automated Clearing House (ACH) debit transfer created on their behalf, as it could lead to malware, researchers from anti-virus company MX Lab, said in a blog post Wednesday. Attackers have been circulating a trojan in emails containing subject lines such as: “ACH payroll payment was not accepted by Central Trust and Savings Bank.” The messages direct users to click on a link to review the transaction details, which lead to a site where malware is hosted. The malicious code executes several Windows registry changes and establishes a connection with the attackers' IP address.

An In-Depth Guide to Application Security

Get essential knowledge and practical strategies to fortify your applications.

Related

GitHub Action attack initially set sights on Coinbase

GitHub Action attack initially set sights on Coinbase Cybersecurity Dive reports that major U.S. cryptocurrency exchange Coinbase was disclosed by Palo Alto Networks Unit 42 and Wiz researchers to have been originally targeted by the supply chain compromise that was eventually aimed at the GitHub Action tj-actions/changed-files, tracked as CVE-2025-30066.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

Related Terms

AdwareBannerBrowserCache CrammingCommon Gateway Interface (CGI)ClientCookieDLL InjectionDynamic Link Library

You can skip this ad in 5 seconds