Back to All Attacks
Attack Details
Attack Date:
Mar 21, 2022

External Third Party Overdue Payment Legal Matter BEC Attack

Initial Email Content

Subject
Civil Case File #291786
Body

Dear Customer,

We have tried to work with you but you are not cooperating with us. Then, unfortunately, we have forwarded your case file to the legal department of FDCP. We already updated the legal department to file the Court petition in the Courthouse. Once the Court Summons will be signed by the court clerk we will update you one copy at your postal address along with one copy at following places:

1. Nearest Police Station

2. At your Employer

3. Internal Revenue Services

4. Federal Bureau for Credit

5. Bank with which you have accounts.

Note: If you want to avoid all these unnecessary steps then you have to get back to us with the payment. Now kindly get back to us so that we can send you the payment instruction.

Thank You.

Attack Screenshots

No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates an external third party using a maliciously registered domain, an overdue payment theme, and a legal matter theme to request a fraudulent payment.

Analysis Overview

Tactic
Maliciously Registered Domain
Goal
Payment Fraud
Impersonated Party
External Party - Other
Vector
Text-based
Theme
Overdue Payment
Legal Matter
Language