Back to All Attacks
Attack Details
Attack Date:
May 10, 2022
Vendor Impersonation Account Update BEC Attack
Initial Email Content
Subject
[Vendor Name] invoice payment
Body
Good day,
This is a follow up on all of our invoices past due, can you let us know if any will be processed this week, Please also note that we have updated our remittance information and want payment sent to us via ACH direct deposit to our updated bank account.
Thank you.
[Impersonated Vendor Employee Name]
[Impersonated Vendor Company Name]
Accounts Receivable
[Impersonated Vendor Contact Details]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates a vendor/supplier using a spoofed display name, a look-alike domain, and an account update theme to request a fraudulent payment.
Analysis Overview
Tactic
Look-alike Domain
Spoofed Display Name
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Account Update
Language