Back to All Attacks
Attack Details
Attack Date:
Apr 27, 2022
External Third Party Impersonation Debt Collection BEC Attack
Initial Email Content
Subject
OUTSTANDING BILL
Body
Hi [Target Name],
I am a Debt Recovery and Enforcement Officer at [Impersonated Third Party Company] I am representing a client in chasing an unpaid invoice #9784333 issued to your firm, I have been advised to contact you on this matter to get this resolved as soon as possible.
Thanks.
James Dinoi
Debt Recovery and Enforcement Officer,
[Impersonated Third Party Company]
[Impersonated Third Party Address]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates an external third party using a look-alike domain, debt collection theme, and overdue payment theme to request a fraudulent payment.
Analysis Overview
Tactic
Look-alike Domain
Goal
Payment Fraud
Impersonated Party
External Party - Other
Vector
Text-based
Theme
Debt Collection
Language