Back to All Attacks
Attack Details
Attack Date:
May 3, 2022
Fake Invoice HTML Attachment Credential Phishing Attack
Initial Email Content
Subject
FW: Invoice #15427
Body
Please see attached for a copy of your new monthly support invoice. If there are any questions or concerns, please feel free to contact me at any time.
Thanks,
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This link-based attack impersonates a vendor/supplier using a compromised external account and a fake invoice theme to steal credentials.
Analysis Overview
Tactic
External Compromised Account
Goal
Credential Theft
Impersonated Party
External Party - Vendor/Supplier
Vector
Payload-based
Theme
Fake Invoice
Language