Its the Citybanks website, there emails got spoofed. Apparently this isn't the only time this has happened to them
Very nasty. Got past Google Positini & MailMarshal.
If you get a email in the subject saying: Merchant Statement
Please hold Shift + Delete key to get rid of it.
DO NOT OPEN IT!!
In our case it came through as a word doc and users being users opened it.
This virus takes personal information and sends it back to the creator from what we found.