Back to All Attacks
Attack Details
Attack Date:
May 1, 2022
Executive Impersonation Payroll Diversion BEC Attack
Initial Email Content
Subject
DD UPDATE
Body
Hey!
Hope you are doing well!
I have recently changed banks and would like to have my direct deposit updated to my new bank account. Can you please ensure the change is effective immediately for the next pay date?
Thanks!
[Impersonated Executive Name]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates an executive using email address spoofing and a maliciously registered domain to divert payroll deposits to a fraudulent account.
Analysis Overview
Tactic
Spoofed Email Address
Maliciously Registered Domain
Goal
Payroll Diversion
Impersonated Party
Employee - Executive
Vector
Text-based
Theme
No items found.
Language