Back to All Attacks
Attack Details
Attack Date:
May 23, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Initial Email Content
Subject
Past Due Accounting Collections
Body
Hello [Recipient First Name],
We are having a current review in our accounting system.
Can you sort all our receivables by their due date to estimate the bad debts expense and should be arranged into columns such as: Current, 1-30 days past due, 31-60 days past due, 61-90+ days past due.
Also include their various emails and phone numbers in an excel sheet, please kindly attend to this request as soon as possible and let me know when you can send it over.
I await your response.
Thank You,
[Executive First Name].
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates an executive using a spoofed display name and a maliciously registered domain to request a copy of an aging report.
Analysis Overview
Tactic
Spoofed Display Name
Maliciously Registered Domain
Goal
Aging Report Theft
Impersonated Party
Employee - Executive
Vector
Text-based
Theme
No items found.
Language