There are reports of phony FDIC notification e-mails tricking computers users into installing the ZBot identity-theft Trojan. E-mails tell recipients that their banks have filed for bankruptcy and that their asserts are now under the control of the FDIC. The links in the message lead to a page that offers users a chance to see their personal FDIC insurance file(s), but which actually installs the Trojan on their PCs. Researchers have spotted notable code overlap between the Sunburst backdoor and a known Turla weapon.
Source: https://threatpost.com/malware-spreading-through-phony-fdic-alerts-110209/72984/