Spoofed Display Name
Look-alike Domain
Spoofed Display Name
Overdue Payment
Account Update
Overdue Payment
Back to All Attacks
Attack Details
Attack Date:
Apr 29, 2022

Vendor Impersonation Payment Fraud Overdue Payment Account Update BEC Attack

Initial Email Content

Subject
ACH Payment Status
Body

Good Day,

I have attempted to contact you several times, but you have not responded; when will your outstanding be paid?  

In addition, we have changed our ACH/Wire information to a new bank account.

Please inform me of the status of the payment.

Regards,

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates a vendor/supplier using display name spoofing, a look-alike domain, an overdue payment theme, and a payment account update theme to request a fraudulent payment.

Analysis Overview

Type
Business Email Compromise
Tactic
Spoofed Display Name
Look-alike Domain
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Overdue Payment
Account Update
Language