Personalized Email Subject
Spoofed Display Name
Free Webmail Account
Personalized Email Subject
No items found.
No items found.
Back to All Attacks
Attack Details
Attack Date:
May 3, 2022

Employee Impersonation Payment Fraud BEC Attack

Initial Email Content

Subject
[Recipient First Name]
Body

What is the current available balance in the account? Do we have Zelle
attached to our bank accounts? I’ll need you to process an outgoing
payment today via Wire/ACH for an Operating Expenses (Networking
Activities Website Hosting and Program Services) which is due.

Kindly let me know if you can get it done today so I can forward you
the details for the payment.

Kind Regards
[Impersonated Employee Name]

Sent from my iPhone

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates an employee using a personalized email subject, display name spoofing, and a free webmail account to request a fraudulent payment.

Analysis Overview

Type
Business Email Compromise
Tactic
Personalized Email Subject
Spoofed Display Name
Free Webmail Account
Goal
Payment Fraud
Impersonated Party
Employee - Other
Vector
Text-based
Theme
No items found.
Language