Back to All Attacks
Attack Details
Attack Date:
May 3, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Initial Email Content
Subject
Invoice Payment Due
Body
Hello,
An invoice is due for payment which involves the acquisition of consulting services to develop efficient operations systems to meet our needs. What do you need to pay new vendors via ACH today?
Keep me in the loop,
Many thanks
[Executive Name]
[Executive Title]
[Company Name]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates an executive using display name spoofing, a free webmail account, and a new vendor theme to request a fraudulent payment.
Analysis Overview
Tactic
Spoofed Display Name
Free Webmail Account
Goal
Payment Fraud
Impersonated Party
Employee - Executive
Vector
Text-based
Theme
New Vendor
Language