Attack Library
Australian Government Spoofer Promises Tax Refund in Likely AI-Generated Credential Theft
An attacker pretends to be from the “Australian Taxation Office” to steal the victim’s login credentials by promising a tax refund.
Debt Collector Spoofer Attempts Credential Theft
An AI-generated attack impersonates a debt collector and creates a sense of urgency to attempt to steal personal information.
LinkedIn Spoofer Uses News of Silicon Valley Bank Closure to Attempt Payment Fraud
Attacker impersonates the LinkedIn billing department and references the recent closure of SVB in this likely AI-generated attack.
Likely AI-Generated Attack Attempts Credential Phishing
An attacker uses a generative AI tool to spoof an insurance company, hoping to steal login credentials.
AI-Generated Credential Theft Attempted via Internal Company Impersonation
By leveraging urgency, an attacker sends an internal company communication in an attempt to steal credentials.
Kraken Exchange Spoofer Attempts to Steal Login Information
An attacker impersonates a popular cryptocurrency exchange and creates a fake website to steal login credentials.
Compromised Account Used in Attempt to Siphon Nearly $4M Worth of Invoices
An attacker gains access to a compromised account and attempts to redirect large invoices to a new offshore bank.
Attacker Impersonates Apple to Request Billing Details
Using a cleverly disguised no-reply domain, an attacker poses as Apple customer support in an attempt to get billing details and other sensitive information.
Lookalike Domain with Single Letter Change Used for $82,000 Invoice Fraud
An attacker changes one letter of a domain to a similar-looking letter in an attempt to redirect a large invoice.
Attacker Posing as Vendor Requests Early Payment of $240,000 Invoice
Using a lookalike domain, an attacker uses conversational language in a fake billing scam.
Attacker Uses Lookalike Domain to Attempt Receipt of $621,000 Invoice
By removing a single letter in the sending domain to still appear legitimate, an attacker attempts to redirect a large invoice.
Attacker Follows Up On Unpaid $132,000 Invoice Using Compromised Vendor Account
After a vendor account is compromised, an attacker references unpaid invoices and utilizes lookalike domains to attempt payment fraud.
Multiple Employees Engage with a Compromised Vendor Account Requesting New Banking Details
An attacker hijacks an email account and communicates with two employees who are unaware the account has been compromised.
$45,000 Wire Transfer Fraud Attempt from Compromised Vendor Account
This attack uses a compromised vendor account and cc’s lookalike domains in an attempted wire transfer fraud.
Sophisticated Attacker Targets Employees for $94,000 Fraud Attempt
By employing a look-alike domain name, an attacker attempts to redirect a large invoice totaling nearly $100k.
Ivy League Health Director Compromised in Monkeypox Scare Spoof
By leveraging a recent public health crisis and targeting universities, the attacker hopes to elicit immediate action and steal email credentials.
Seized Funds Phishing Attempt via JP Morgan Chase & Co Impersonation
This attack features an impersonation by a well-known bank that attempts to steal account credentials.
Attack Spoofs Debt Relief Agency and Impersonates Attorney
This attack features an impersonation of an attorney on behalf of a debt relief agency in an attempt to receive a $1,000 payment.
Zelle Impersonation Attack Targets Branch Manager
A popular money transferring service is impersonated in an attempted extortion.
Attacker Requests £61,000 Using Compromised Vendor Account with Lookalike Email Cc'ed
Attackers hijack an ongoing thread and create a lookalike domain to continue the conversation as part of an invoice fraud attack.