Back to All Attacks
Attack Details
Attack Date:
May 18, 2022
Vendor Impersonation Overdue Payment Payment Inquiry BEC Attack
Initial Email Content
Subject
OUTSTANDING INVOICE REQUEST
Body
Good day
hope you're well and had a good weekend.
We are writing in reference to an overdue invoice, we kindly ask that you reassert to us the status of our outstanding or any due if there are any, as we currently have to give you an updated information.
Please get back to us immediately with the total amount that is outstanding with corresponding due dates and invoices respectively.
kindly hold off on any payment due.
[Vendor Employee Name] - Sales Manager
[Vendor Company Address]
Inside Sales: invoice.outstanding@accountant.com
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates a vendor/supplier using a spoofed email address, a free webmail account, an overdue payment theme, and a payment inquiry theme to request a fraudulent payment.
Analysis Overview
Tactic
Spoofed Email Address
Free Webmail Account
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Overdue Payment
Payment Inquiry
Language