Personalized Email Subject
Maliciously Registered Domain
Personalized Email Subject
Expired Account
Expired Account
Back to All Attacks
Attack Details
Attack Date:
Jun 28, 2022

Expired Account Credential Phishing Attack

Initial Email Content

Subject
[Target Company Name] Urgent deactivation alert
Body

[Target Company Name] Verification Expires 01 July, 2022


Hi [Recipient Username],


Your password for your email account [Recipient Email Address] will expire on 01 July, 2022.

To continue using your account [Recipient Email Address] Please reconfirm account ownership below.


Reconfirm Password


[Target Company Name] Mail Team

Message securely sent to [Recipient Email Address], please ignore if wrongly received.

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This link-based attack uses a personalized email subject, a maliciously registered domain, and an expired account theme to steal credentials.

Analysis Overview

Type
Credential Phishing
Tactic
Personalized Email Subject
Maliciously Registered Domain
Goal
Credential Theft
Impersonated Party
Vector
Link-based
Theme
Expired Account
Language