NACHA - The Electronic Payments Association has received reports that individuals and/or companies have received a fraudulent e-mail that has the appearance of having been sent from NACHA and signed by a non-existent NACHA employee. Specifically, this email claims to be from the "Electronic Payments Association" and appears to be coming from a "payments@ nacha.org" or “transfers@ nacha.org” email address. See a sample of the email below.
Phishing is the act of sending email that falsely claims to be from a legitimate organization. This is usually combined with a threat or request for information: for example, that an account will close, a balance is due, or information is missing from an account. The email will ask the recipient to supply confidential information, such as bank account details, PINs or passwords; these details are then used by the owners of the website to conduct fraud.
Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.
Please note that NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. Further, NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive.
Be alert for different variations of fraudulent e-mails such as the following sample:
= = = = = Sample E-mail = = = = = =
From: p firstname.lastname@example.org [mailto:p email@example.com]
Sent: Tuesday, February 22, 2011 7:32 AM
To: Doe, John
Subject: ACH transaction rejected
The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.
Please click here to view report.
If you have received correspondence you believe to be suspicious, do not click on any of the links. Delete the email and contact your bank if you should have questions or concerns.
(September 2, 2011). Fraudulent Emails Appearing to Come from NACHA (Action Requested). NACHA – The Electronic
Payments Association. Retrieved October 27, 2011 from