Look out for fraudulent emails spoofing “The Electronic Payments Association” that are arriving as:
Subject: Rejected ACH payment
In reality these messages are from previously infected personal computers from across the globe:
from [126.96.36.199] (helo=ABTS-mp-dynamic-032.251.168.122.airtelbroadband.in)
These messages include a fictional warning that includes content such as:
The ACH transaction (ID: 32604668345041), recently sent from your checking account (by you or any other person), was rejected by the other financial institution.