Back to All Attacks
Attack Details
Attack Date:
May 11, 2022
Employee Impersonation Payroll Diversion BEC Attack
Initial Email Content
Subject
Change My Details - [Impersonated Employee Name]
Body
Good Morning [Recipient First Name],
I got a call from my bank not quite long enough that my account will be placed on hold for some info needed from me to update it and I had to switch to a new financial institution. Can you please update my new direct deposit info for me? I would be glad if the changes can be effective for the current pay day. What Information Do You Need ?
Regards
[Impersonated Employee Name]
[Impersonated Employee Title]
[Company Name]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates an employee using a personalized email subject, a spoofed display name, and a free webmail account to divert payroll deposits to a fraudulent account.
Analysis Overview
Tactic
Personalized Email Subject
Spoofed Display Name
Free Webmail Account
Goal
Payroll Diversion
Impersonated Party
Employee - Other
Vector
Text-based
Theme
No items found.
Language