Likely

Not Likely

.ONE File

Aging Report Theft

Credential Theft

Extortion

Gift Card Request

Malware Delivery

Payment Fraud

Payroll Diversion

W-2 Theft

ACE Cash Express

Adobe

Amazon

Amazon Web Services

American Express

American Financial Group

Apple

Australia and New Zealand Banking Group

Australian Taxation Office

Bank of America

Bendigo and Adelaide Bank

Bittrex

Booking.com

Canada Post

Capital One

Chase

Coinbase

Craigslist

Dashlane

Disney

DocuSign

Dropbox

EUROCONTROL

Europol

Eventbrite

Facebook

FedEx

FTX Trading Ltd.

Instagram

Kraken

LinkedIn

Matrix Debt Relief

McAfee

Medicare Australia

MetaMask

MetLife

Microsoft

monday.com

myGov

Netflix

New Jersey Department of Health

New York State Tax Department

Newrez

Norton

Office365

OneDrive

OpenSea

Outlook

PayPal

Peacock

QuickBooks

RingCentral

Robinhood

Salesforce

Santander Bank

ShareFile

SharePoint

SiriusXM

Social Security Administration

Spotify

Square

Squarespace

TD Bank

TeamViewer

Trust Wallet

TSB Bank

University

USDA

USPS

Venmo

Walmart

Wells Fargo

Wirex

Zelle

Zoom

ZoomInfo

Brand

Employee - Executive

Employee - Other

External Party - Other

External Party - Vendor/Supplier

Government Agency

Internal System

Danish

Dutch

French

German

Hungarian

Italian

Lithuanian

Norwegian

Spanish

Swedish

BCC Recipient List

Blank Email Body

Branded Phishing Page

Captcha-Protected Phishing Page

Cell Phone Number Request

Compromised Sending Domain

Content Obfuscation via Image

Extended Spoofed Display Name

External Compromised Account

Fake Attachment

Fake Email Chain

Fake Website

Foreign Character Substitution

Free Webmail Account

Hidden Sender Address

Hijacked Email Thread

Legitimate Hosting Infrastructure

Look-alike Domain

Maliciously Registered Domain

Masked Phishing Link

Matching Free Webmail Username

Matching Malicious Domain Username

MFA Bypass

Mismatched Reply-To Address

Modified Document

Obfuscated Email Content

Obfuscated File Source Code

Personalized Email Subject

Self-Addressed Spoofed Email

Spoofed Display Name

Spoofed Email Address

Account Update

Account Verification

Audit

COVID-19

Cryptocurrency

Debt Collection

Direct Deposit Payment

Employee Benefits

Employee Incentive

Fake Document

Fake Invitation

Fake Invoice

Fake Payment

Fake Payment Receipt

Fake Shipping Notification

Fake Voicemail

Financial Services

Health Concern

Holiday Gift

Human Resources Announcement

Legal Matter

Mergers & Acquisitions

New Vendor

Overdue Payment

Password Expiration

Payment Inquiry

Real Estate Transaction

Secure Message

Security Update

Suspended Account

Suspicious Account Activity

Tax Return

Business Email Compromise

Credential Phishing

Credential Vishing

Fake Billing Scam

Financial Services Scam

Malware

Vendor Email Compromise

Link-based

Payload-based

Text-based

Attackers use a text-based email stating that they have access to the recipient’s personal information, including photos and browser history, stating that it will be deleted in exchange for a bitcoin payment.

Extortion Attack on Employees Used in Ploy for Bitcoin Payments

Attackers impersonate the company payroll department to send a wage update that takes users to a OneDrive phishing page and steals Microsoft 365 credentials.

Salary Increase Update Sent to Steal Employee Credentials

<p>Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.</p>

Abnormal Intelligence Email Subscribe

Top Bar

<p>New BEC Insights from Chris Krebs, Former Director of CISA</p>

Homepage

Attack Library

Breadcrumbs

Search the repository of unique attacks observed by the Abnormal Intelligence team.

Attack Library | Abnormal

description

https://images.abnormalsecurity.com/production/images/og-images/ABN-Unique-Attacks-Open-Graph-Image_L3R1.png?w=1200&h=630&q=82&auto=format&fit=crop&dm=1659923310&s=a8100fd261d48cc0dd89b28971f83b4b

Attack Library

Extortion Attack on Employees Used in Ploy for Bitcoin Payments

Salary Increase Update Sent to Steal Employee Credentials

Filters

Attack Type

Impersonated Party

Impersonated Brand

Attack Goal

Attack Vector

Attack Tactic

Attack Theme

Attack Language

AI-Generated