Spoofed Email Address
Look-alike Domain
Matching Malicious Domain Username
Spoofed Email Address
Overdue Payment
Overdue Payment
Back to All Attacks
Attack Details
Attack Date:
May 17, 2022

Vendor Impersonation Overdue Payment BEC Attack

Initial Email Content

Subject
Overdue Account
Body

Hello,


Your invoices are now past due - kindly confirm the payment dates.


Let me know if you require copies.


 


Kind Regards,


[Impersonated Vendor Employee Name]

Accounts Department



[Impersonated Vendor Company Name]

[Impersonated Vendor Company Address]

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates a vendor/supplier using a spoofed email address, a look-alike domain, a matching malicious domain username, and an overdue payment theme to request a fraudulent payment.

Analysis Overview

Type
Business Email Compromise
Tactic
Spoofed Email Address
Look-alike Domain
Matching Malicious Domain Username
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Overdue Payment
Language