Back to All Attacks
Attack Details
Attack Date:
Jun 15, 2022
Direct Deposit Payment Credential Phishing Attack
Initial Email Content
Subject
Remittance Advice Notification
Body
Attached is your direct deposit, which will be deposited on 6/15/2022. Note: A PDF viewer, such as Adobe reader, must be installed on your computer in order to view your stub.
https://achremitdatatbackdatingsource[.]s3[.]us-west-1[.]amazonaws.com/vendorportalpayment.html#[Recipient Email Address]#ZWtsaW5lQGl0cy5qbmouY29t])
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This link-based attack uses an external compromised account and a direct deposit payment theme to steal credentials.
Analysis Overview
Tactic
External Compromised Account
Goal
Credential Theft
Impersonated Party
Vector
Link-based
Theme
Direct Deposit Payment
Language