Back to All Attacks
Attack Details
Attack Date:
May 19, 2022
Vendor Impersonation Overdue Payment BEC Attack
Initial Email Content
Subject
Invoice 960201 Overdue.
Body
Re: Overdue invoice reminder
This is a final reminder that Invoice 960201 Overdue.
Can you confirm this is paid ?
Kind Regards
[Vendor Employee First Name]
[Vendor Employee Name]
[Vendor Employee Title]
[Vendor Company Name]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates a vendor/supplier using a look-alike domain and an overdue payment theme to request a fraudulent payment.
Analysis Overview
Tactic
Look-alike Domain
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Overdue Payment
Language