Attack Library
Venmo Impersonator Uses Free Russian Webmail Account to Initiate Fraudulent Fund Transfer
Attackers exploit the trust in Venmo's brand to deceive recipients into refunding non-existent payments.
Threat Actor Uses Impersonation and Spoofing to Deliver Malicious Payload in Likely AI-Generated Attack
Using a spoofed email address, an attacker poses as a known brand and attempts to convince the target to open a malicious attachment.
Threat Actor Impersonates Spotify and Attempts to Steal Payment Details in Likely AI-Generated Phishing Attack
Attackers use a spoofed email to exploit the trust of Spotify users and direct them to a phishing site under the guise of updating payment information.
Threat Actor Impersonates Bankrupt Cryptocurrency Exchange FTX Trading Ltd. in Likely AI-Generated Phishing Attack
Attackers exploit the demise of FTX Trading Ltd. to deceive recipients into divulging sensitive information through a fraudulent withdrawal scheme.
Phisher Expertly Impersonates DHL Branding in Likely AI-Generated Attack
Using a fraudulent notification regarding a delivery issue, an attacker hopes to compel a target to divulge sensitive information.
Likely AI-Generated Vishing Attack Leverages Impersonation of Peacock and Fake Subscription Confirmation
A threat actor claims the target has signed up for the streaming service and includes a fabricated invoice to compel them to contact a fake customer support line.
Likely AI-Generated Phishing Attack Uses Compromised Email Account to Impersonate Australia and New Zealand Banking Group
Attackers use an AI-generated email to exploit the trust of a known brand and direct recipients to a phishing site under the guise of enhancing account security.
Threat Actor Impersonates IRS and Manufactures Urgency in Likely AI-Generated Phishing Attack
An attacker poses as the IRS and claims there's an issue with the target's tax return to deceive them into revealing private information.
Threat Actor Compromises Faculty Email to Phish University VIP in Likely AI-Generated Attack
After compromising a legitimate email account, an attacker attempts credential theft by inviting a target to apply for an employee benefits program.
Attacker Impersonates Cryptocurrency Service in Likely AI-Generated, Multi-Step Credential Theft Attempt
An attacker impersonates payment solutions provider Wirex using a convincing account verification email and branded phishing page to steal login credentials.
Multi-Step Vishing Attempt Features Impersonation of PayPal and McAfee
After spoofing a PayPal customer service email, an attacker sends a fraudulent notification regarding a bogus McAfee charge to compel the target to call a fake support center and cancel the transaction.
Likely AI-Generated Coinbase Impersonator Creates Fake Landing Page in Multi-Step Credential Phishing Attack
By mimicking Coinbase’s branding in both the email and landing page, an attacker attempts to create a sense of urgency around suspicious account activity and prompt immediate action from the target.
Threat Actor Convincingly Impersonates Employee Requesting Direct Deposit Update in Likely AI-Generated Attack
The attacker uses a Gmail account to send an email free of grammatical errors and with no malicious payloads to attempt payroll diversion.
Likely AI-Generated Credential Vishing Attack Features Impersonation of Walmart
An attacker attempts to create a sense of urgency and compel the target to call a fake customer service number by sending a bogus receipt for a recent iPhone purchase.
Likely AI-Generated Financial Services Scam Features Social Engineering Techniques for Future Credential Theft
An attacker attempts to develop trust with a recipient and set the stage for future credential theft by referencing past interactions and updates on a $800,000 investment.
Likely AI-Generated Microsoft Impersonator Sends Fake Attachment in Malware Attack
Using a legitimate domain as a mask, an attacker attempts to infect a recipient’s computer with malware via an HTML attachment.
Likely AI-Generated Credential Phishing Attack Features Impersonation of Medicare Australia
An attacker pretends to be from Medicare Australia and informs the recipient that their Medicare services have been suspended due to insufficient contact information.
Insurance Company Impersonator Provides Fake Benefits Document in Likely AI-Generated Attempted Malware Delivery
An attacker leverages a legitimate-looking domain as a mask to send a likely malware-infected document purportedly about benefits information.
TSB Bank Impersonator Uses Look-alike Domain in Likely AI-Generated Credential Phishing Attack
An attacker utilizes an unregistered look-alike domain as a mask to impersonate TSB Bank and steal sensitive information.
Netflix Impersonator Likely Utilizes Generative AI in Credential Phishing Attack
An attacker takes control of a legitimate domain to impersonate Netflix customer support in a credential theft attempt.
Attacker Takes Over Established Domain in Likely AI-Generated Credential Phishing
An attacker breaks into an 21-year-old email account and links to a malicious IPFS gateway to steal sensitive information.
Likely AI-Generated Metlife Advisor Impersonator Attempts Financial Services Scam
An attacker uses social engineering techniques to build trust with a recipient before likely stealing sensitive information and money.
Sophisticated USPS Impersonator Attempts Credential Theft in Multi-Layered Attack
An attacker likely uses generative AI to create a fake automated USPS message about incorrect address information, including links to a fake USPS landing page.
Investment Opportunity Spoofer Offers Financial Services in Likely AI-Generated Scam
An attacker offers business financing options and promises commission for all successful referrals using a spoofed address.
Cosmetics Brand Impersonator Attempts Payment Fraud in Fake Billing Scam
An attacker uses generative AI to attempt payment fraud by impersonating an Australian cosmetics brand.
Freight Company Impersonated in Likely AI-Generated Credential Theft Attempt
An attacker utilizes a close resemblance freight company DAT One's domain in a credential theft attempt.
Australian Government Spoofer Promises Tax Refund in Likely AI-Generated Credential Theft
An attacker pretends to be from the “Australian Taxation Office” to steal the victim’s login credentials by promising a tax refund.
Debt Collector Spoofer Attempts Credential Theft
An AI-generated attack impersonates a debt collector and creates a sense of urgency to attempt to steal personal information.
LinkedIn Spoofer Uses News of Silicon Valley Bank Closure to Attempt Payment Fraud
Attacker impersonates the LinkedIn billing department and references the recent closure of SVB in this likely AI-generated attack.
Likely AI-Generated Attack Attempts Credential Phishing
An attacker uses a generative AI tool to spoof an insurance company, hoping to steal login credentials.
AI-Generated Credential Theft Attempted via Internal Company Impersonation
By leveraging urgency, an attacker sends an internal company communication in an attempt to steal credentials.
Kraken Exchange Spoofer Attempts to Steal Login Information
An attacker impersonates a popular cryptocurrency exchange and creates a fake website to steal login credentials.