Personalized Email Subject
Spoofed Display Name
Free Webmail Account
Personalized Email Subject
No items found.
No items found.
Back to All Attacks
Attack Details
Attack Date:
May 4, 2022

Employee Impersonation Payroll Diversion BEC Attack

Initial Email Content

Subject
[Recipient Company Name]
Body

Hi,

 Do you mind giving me information on how to update my payroll direct
deposit, and also I will like to know when it would be effective as
soon as it is updated?

Thanks.


[Recipient Name]

[Recipient Title]

[Recipient Company]

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates an employee using a personalized email subject, display name spoofing, and a free webmail account to divert payroll deposits to a fraudulent account.

Analysis Overview

Type
Business Email Compromise
Tactic
Personalized Email Subject
Spoofed Display Name
Free Webmail Account
Goal
Payroll Diversion
Impersonated Party
Employee - Other
Vector
Text-based
Theme
No items found.
Language