Matching Free Webmail Username
Spoofed Display Name
Matching Free Webmail Username
No items found.
No items found.
Back to All Attacks
Attack Details
Attack Date:
Jun 29, 2022

Executive Impersonation Payroll Diversion BEC Attack

Initial Email Content

Subject
Update Payroll Account
Body

Hi [Recipient First Name],

 

I have a quick question for you, I changed my bank account and I'll like to update my direct deposit details on file,Can the change be effective for the current pay date?.

 

Warm Regards.

 

[Executive Name]

[Executive Title]

 

[Target Company Name]

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates an executive using a matching free webmail username and a spoofed display name to divert payroll deposits to a fraudulent account.

Analysis Overview

Type
Business Email Compromise
Tactic
Matching Free Webmail Username
Spoofed Display Name
Goal
Payroll Diversion
Impersonated Party
Employee - Executive
Vector
Text-based
Theme
No items found.
Language