Uncover the latest attacks sent to our Abnormal customers.
Executive Impersonated in Aging Report Theft
Subject: “Status of Payment

Attackers impersonate an executive to request that an aging report be sent, complete with invoice numbers, payment terms, and client information.

Attack Date: June 29, 2022
Executive Impersonated in LinkedIn Overdue Payment Request
Subject: “Daily Invoice from Linkedln

Attackers impersonate an executive to bolster the validity of a fraudulent invoice in this double-phased attack.

Attack Date: June 29, 2022
Executive Impersonation Used to Elicit Secrecy in Employee Surprise
Subject: “routine ­­staff appreciation

Attackers impersonate an executive and rely on human willingness to help in order to request a surprise appreciation gift for the team.

Attack Date: June 29, 2022
Executive Impersonated in Payroll Diversion Scheme
Subject: “Update Payroll Account

Cybercriminals impersonate an executive and target the payroll administrator in an ask to update direct deposit information to a bank account owned by the attacker.

Attack Date: June 29, 2022
Executive Impersonated in Legal Matter to Request Overdue Payment
Subject: “Unpaid Invoice

Attackers impersonate an executive and use a fake email chain to request an overdue payment of over £65,000, adding information about a fake legal case to increase the urgency to pay.

Attack Date: June 29, 2022
Dutch Executive Impersonation Payment Fraud BEC Attack
Subject: “[Recipient First Name]

This text-based Dutch-language BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a free webmail account to request a fraudulent payment.

Attack Date: June 29, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “FYI !!!

This text-based BEC attack impersonates an executive using a spoofed email address, a matching malicious domain username, and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 28, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “[Target Company Name] AGING REQUEST

This text-based BEC attack impersonates an executive using a personalized email subject, a maliciously registered domain, and a spoofed display name to request a copy of an aging report.

Attack Date: June 28, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Re:

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 28, 2022
Dutch Executive Impersonation Gift Card Request BEC Attack
Subject: “[Recipient First Name]

This text-based Dutch-language BEC attack impersonates an executive using a personalized email subject, a cell phone number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: June 28, 2022
German Executive Impersonation Gift Card Request BEC Attack
Subject: “ANFRAGE

This text-based German-language BEC attack impersonates an executive using a spoofed display name and a free webmail account to request the purchase of gift cards.

Attack Date: June 27, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Changing The P-Stub..

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 27, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Instant response!!

This text-based BEC attack impersonates an executive using a spoofed email address, a matching malicious domain username, and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: June 27, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Availability

This text-based BEC attack impersonates an executive using a spoofed email address and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 27, 2022
Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Re: SIN008750-June-2022

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, and an overdue payment theme to request a fraudulent payment.

Attack Date: June 27, 2022
Finnish Executive Impersonation Gift Card Request BEC Attack
Subject: “Hei [Recipient First Name]

This text-based Finnish-language BEC attack impersonates an executive using a personalized email subject, an external compromised account, and a spoofed display name to request the purchase of gift cards.

Attack Date: June 27, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Oversea payment

This text-based BEC attack impersonates an executive using a free webmail account, a spoofed display name, and a new vendor theme to request a fraudulent payment.

Attack Date: June 24, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “Good Afternoon [Recipient First Name]

This text-based BEC attack impersonates an executive using a spoofed email address, a personalized email subject, and a maliciously registered domain to request a copy of an aging report.

Attack Date: June 24, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “Aged Debtors File

This text-based BEC attack impersonates an executive using a maliciously registered domain and a spoofed display name to request a copy of an aging report.

Attack Date: June 23, 2022
Executive Impersonation Mergers & Acquisitions Payment Fraud BEC Attack
Subject: “Investment Assets

This text-based BEC attack impersonates an executive using a spoofed display name, a maliciously registered domain, and a mergers & acquisitions theme to request a fraudulent payment.

Attack Date: June 23, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Payout Request

This text-based BEC attack impersonates an executive using a maliciously registered domain, a spoofed display name, and a new vendor theme to request a fraudulent payment.

Attack Date: June 23, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Supply

This text-based BEC attack impersonates an executive using a maliciously registered domain and a spoofed display name to request a fraudulent payment.

Attack Date: June 23, 2022
Finnish Executive Impersonation Gift Card Request BEC Attack
Subject: “[Target Company Name]

This text-based Finnish-language BEC attack impersonates an executive using a personalized email subject, a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: June 23, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “[Target Company Name] Past Receivables

This text-based BEC attack impersonates an executive using a personalized email subject, a maliciously registered domain, and a spoofed display name to request a copy of an aging report.

Attack Date: June 22, 2022
German Executive Impersonation Payment Fraud BEC Attack
Subject: “BaFin Projekt

This text-based German-language BEC attack impersonates an executive using an extended spoofed display name and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 22, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Fwd: [Vendor Company Name] Invoice #15250

This text-based BEC attack impersonates an executive using a fake email chain, a look-alike domain, and a spoofed display name to request a fraudulent payment.

Attack Date: June 21, 2022
Romanian Executive Impersonation Payment Fraud BEC Attack
Subject: “Transfer internațional

This text-based Romanian-language BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a fraudulent payment.

Attack Date: June 21, 2022
Spanish Executive Impersonation Gift Card Request BEC Attack
Subject: “UN MOMENTO

This text-based Spanish-language BEC attack impersonates an executive using a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: June 17, 2022
Executive Impersonation Gift Card Request BEC Attack
Subject: “[no subject]

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request the purchase of gift cards.

Attack Date: June 16, 2022
German Executive Impersonation Gift Card Request BEC Attack
Subject: “Task [Recipient First Name]

This text-based German-language BEC attack impersonates an executive using an external compromised account and a spoofed display name to request the purchase of gift cards.

Attack Date: June 15, 2022
Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “Stephane Davin

This text-based BEC attack impersonates an executive using an extended spoofed display name, a maliciously registered domain, and a legal matter theme to request a fraudulent payment.

Attack Date: June 13, 2022
Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Invoice

This text-based BEC attack impersonates an executive using a fake email chain, a maliciously registered domain, a spoofed display name, and an overdue payment theme to request a fraudulent payment.

Attack Date: June 13, 2022
Polish Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Fwd: Overdue Invoice Reminder -1904772

This text-based Polish-language BEC attack impersonates an executive using a fake email chain, a spoofed display name, a maliciously registered domain, and an overdue payment theme to request a fraudulent payment.

Attack Date: June 10, 2022
French Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “Contact

This text-based French-language BEC attack impersonates an executive using a spoofed email address, an extended spoofed display name, a maliciously registered domain, and a legal matter theme to request a fraudulent payment.

Attack Date: June 7, 2022
Executive Impersonation Mergers & Acquisitions Payment Fraud BEC Attack
Subject: “Hugues Moreau

This text-based BEC attack impersonates an executive using a spoofed email address, an extended spoofed display name, a maliciously registered domain, and a mergers & acquisitions theme to request a fraudulent payment.

Attack Date: May 31, 2022
Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “OGDI6804 / [TARGET COMPANY NAME]

This text-based BEC attack impersonates an executive using an extended spoofed display name, a personalized email subject, a maliciously registered domain, and a legal matter theme to request a fraudulent payment.

Attack Date: May 30, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “Account Review Printout

This text-based BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a copy of an aging report.

Attack Date: May 30, 2022
French Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “KPMG

This text-based French-language BEC attack impersonates an executive using an extended spoofed display name, a matching malicious domain username, and a legal matter theme to request a fraudulent payment.

Attack Date: May 30, 2022
Swedish Executive Impersonation Payment Fraud BEC Attack
Subject: “saldo

This text-based Swedish-language BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a fraudulent payment.

Attack Date: May 30, 2022
French Executive Impersonation Gift Card Request BEC Attack
Subject: “Demande

This text-based French-language BEC attack impersonates an executive using a spoofed display name and a free webmail account to request the purchase of gift cards.

Attack Date: May 24, 2022
Executive Impersonation Gift Card Request BEC Attack
Subject: “[no subject]

This text-based BEC attack impersonates an executive using a foreign character substitution, a cell phone number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: May 23, 2022
Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Overdue Invoice

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, and an overdue payment theme to request a fraudulent payment.

Attack Date: May 23, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Subject: “Past Due Accounting Collections

This text-based BEC attack impersonates an executive using a spoofed display name and a maliciously registered domain to request a copy of an aging report.

Attack Date: May 23, 2022
Spanish Executive Impersonation Payroll Diversion BEC Attack
Subject: “Cambio en cuenta salarial

This text-based Spanish-language BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: May 23, 2022
Spanish Executive Impersonation Gift Card Request BEC Attack
Subject: “UN MOMENTO

This text-based Spanish-language BEC attack impersonates an executive using a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: May 23, 2022
Executive Impersonation COVID-19 Community Service Gift Card Request BEC Attack
Subject: “[Target Company Name]

This text-based BEC attack impersonates an executive using a maliciously registered domain, a spoofed display name, a COVID-19 theme, and a community service theme to request the purchase of gift cards.

Attack Date: May 20, 2022
Executive Impersonation Community Service Gift Card Request BEC Attack
Subject: “[Target Company Name]

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, and a community service theme to request the purchase of gift cards.

Attack Date: May 20, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Management Consultancy Services

This text-based BEC attack impersonates an executive using a matching malicious domain username, a free webmail account, and a spoofed display name to request a fraudulent payment.

Attack Date: May 20, 2022
Executive Impersonation Fake Invoice Payment Fraud BEC Attack
Subject: “FW: Account 100015389930

This text-based BEC attack impersonates an executive using a fake email chain, a maliciously registered domain, a spoofed display name, and a fake invoice theme to request a fraudulent payment.

Attack Date: May 19, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Treasurer

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a fraudulent payment.

Attack Date: May 19, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Subject: “Quick Follow-UP

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a copy of an aging report.

Attack Date: May 19, 2022
Executive Impersonation New Vendor Overdue Payment Payment Fraud BEC Attack
Subject: “Due Invoice

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, a new vendor theme, and an overdue payment theme to request a fraudulent payment.

Attack Date: May 18, 2022
Executive Impersonation Mergers & Acquisitions Payment Fraud BEC Attack
Subject: “Hi [Recipient First Name],

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, a free webmail account, and a mergers & acquisitions theme to request a fraudulent payment.

Attack Date: May 17, 2022
Spanish Executive Impersonation Gift Card Request BEC Attack
Subject: “TAREA URGENTE

This text-based Spanish-language BEC attack impersonates an executive using a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: May 18, 2022
German Executive Impersonation Gift Card Request BEC Attack
Subject: “Schnelle Antwort

This text-based German-language BEC attack impersonates an executive using a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: May 18, 2022
Executive Impersonation Overdue Payment Legal Matter Payment Fraud BEC Attack
Subject: “Unpaid Invoice

This text-based BEC attack impersonates an executive using a fake email chain, a spoofed email address, a matching malicious domain username, a maliciously registered domain, a legal matter theme, and an overdue payment theme to request a fraudulent payment.

Attack Date: May 17, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “[Impersonated Executive Name]

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: May 17, 2022
Polish Executive Impersonation Payment Fraud BEC Attack
Subject: “Pilna płatność

This text-based Polish-language BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a fraudulent payment.

Attack Date: May 16, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Subject: “Sales Ledger Aged Debtors Report Request

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a copy of an aging report.

Attack Date: May 16, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “May Payroll Updates ​

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: May 16, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Good morning [Recipient First Name],

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 13, 2022
Executive Impersonation Employee Incentive Gift Card Request BEC Attack
Subject: “Surprise Incentive

This text-based BEC attack impersonates an executive using a spoofed display name, a maliciously registered domain, and an employee incentive theme to request the purchase of gift cards.

Attack Date: May 12, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Subject: “Aging Reports AR With Contacts Emails

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a copy of an aging report.

Attack Date: May 12, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “New Details

This text-based BEC attack impersonates an executive using a spoofed email address and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 12, 2022
Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Overdue

This text-based BEC attack impersonates an executive using a fake email chain, a spoofed display name, a maliciously registered domain, and an overdue payment theme to request a fraudulent payment.

Attack Date: May 12, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “[Recipient First Name]

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a free webmail account to request a fraudulent payment.

Attack Date: May 11, 2022
Dutch Executive Impersonation Payment Fraud BEC Attack
Subject: “Betaling

This text-based Dutch-language BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a fraudulent payment.

Attack Date: May 11, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Transfer

This text-based BEC attack impersonates an executive using a spoofed display name and a maliciously registered domain to request a fraudulent payment.

Attack Date: May 10, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Requisition

This text-based BEC attack impersonates an executive using a spoofed display name and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 10, 2022
Executive Impersonation Employee Incentive Gift Card Request BEC Attack
Subject: “Employee Incentive Programs.

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, a cell phone number request, a WhatsApp number request, and an employee incentive theme to request the purchase of gift cards.

Attack Date: May 10, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Payment Request FYI

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a copy of an aging report.

Attack Date: May 9, 2022
Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “consulting

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, and a legal matter theme to request a fraudulent payment.

Attack Date: May 9, 2022
Executive Impersonation Aging Report Compromise BEC Attack
Subject: “A/R

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to request a copy of an aging report.

Attack Date: May 9, 2022
Executive Impersonation Gift Card Request BEC Attack
Subject: “[Recipient First Name]

This text-based BEC attack impersonates an executive using a personalized email subject, a cell phone number request, a spoofed email address, and a free webmail account to request the purchase of gift cards.

Attack Date: May 9, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Investment Assets

This text-based BEC attack impersonates an executive using a spoofed display name and a maliciously registered domain to request a fraudulent payment.

Attack Date: May 9, 2022
Executive Impersonation Gift Card Request BEC Attack
Subject: “[Target Company Name] [Target Company City/State]

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: May 6, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “URGENT WIRE TRANSFER

This text-based BEC attack impersonates an executive using a spoofed email address and a maliciously registered domain to request a fraudulent payment.

Attack Date: May 8, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Re Instruction

This text-based BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a fraudulent payment.

Attack Date: May 5, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “DIRECT DEPOSIT INFO UPDATED

This text-based BEC attack impersonates an executive using a spoofed email address and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: April 25, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Outstanding Accounts Report

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: May 5, 2022
Italian Executive Impersonation Payroll Diversion BEC Attack
Subject: “Modificare i dettagli del libro paga

This text-based Italian-language BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 5, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Paycheck Re-update

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 5, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Funds For Today

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: May 5, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Fedwire

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a fraudulent payment.

Attack Date: February 24, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Oversea payment

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: May 3, 2022
Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “Project Vida - Legal Matter

This text-based BEC attack impersonates an executive using display name spoofing, a maliciously registered domain, and a legal matter theme to request a fraudulent payment.

Attack Date: May 4, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Report

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: May 4, 2022
Executive Impersonation W-2 Theft BEC Attack
Subject: “[Recipient First Name]

This text-based BEC attack impersonates an executive using a personalized email subject, display name spoofing, and a maliciously registered domain to steal employee W-2s..

Attack Date: May 3, 2022
Executive Impersonation Gift Card BEC Attack
Subject: “[Recipient First Name]

This text-based BEC attack impersonates an executive using a cell phone request and email spoofing to request the purchase of gift cards.

Attack Date: May 3, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Invoice Payment Due

This text-based BEC attack impersonates an executive using display name spoofing, a free webmail account, and a new vendor theme to request a fraudulent payment.

Attack Date: May 3, 2022
Executive Impersonation Legal Matter Payment Fraud BEC Attack
Subject: “Corporate Matters

This text-based BEC attack impersonates an executive using email spoofing and a legal matter theme to request a fraudulent payment.

Attack Date: May 3, 2022
Executive Impersonation Gift Card BEC Attack
Subject: “[RECIPIENT NAME]

This text-based BEC attack impersonates an executive using a personalized email subject, display name spoofing, and a free webmail account to request the purchase of gift cards.

Attack Date: March 22, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Consultancy fee

This text-based BEC attack impersonates an executive using display name spoofing, a free webmail account, and a new vendor theme to request a fraudulent payment.

Attack Date: March 21, 2022
Executive Impersonation Employee Incentive Gift Card BEC Attack
Subject: “New Incentive Program

This text-based BEC attack impersonates an executive using display name spoofing, a free webmail account, and an employee incentive theme to request the purchase of gift cards.

Attack Date: March 10, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Invoice 001691134

This text-based BEC attack impersonates an executive using a fake email chain, display name spoofing, and a maliciously registered domain to request a fraudulent payment.

Attack Date: April 6, 2022
Executive Impersonation Holiday Gift Gift Card BEC Attack
Subject: “Response

This text-based BEC attack impersonates an executive using display name spoofing, a free webmail account, and a holiday gift theme to request the purchase of gift cards.

Attack Date: April 6, 2022
Executive Impersonation Gift Card BEC Attack
Subject: “AVAILABLE?

This text-based BEC attack impersonates an executive using a WhatsApp number request, display name spoofing, and a free webmail account to request the purchase of gift cards.

Attack Date: April 5, 2022
Executive Impersonation Gift Card BEC Attack
Subject: “ON DESK

This text-based BEC attack impersonates an executive using a cell phone request, display name spoofing, and a free webmail account to request the purchase of gift cards.

Attack Date: April 1, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Financial Update

This text-based BEC attack impersonates an executive using display name spoofing, a maliciously registered domain, and a new vendor theme to request a fraudulent payment.

Attack Date: April 28, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “[Recipient Name]

This text-based BEC attack impersonates an executive using a personalized email subject, display name spoofing, and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: April 27, 2022
Executive Impersonation Fake Email Chain Payment Fraud BEC Attack
Subject: “DTA 2021 Due Payment

This text-based BEC attack impersonates an executive using a fake email chain, display name spoofing, and a maliciously registered domain to request a fraudulent payment.

Attack Date: April 29, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “DD UPDATE

This text-based BEC attack impersonates an executive using email address spoofing and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: May 1, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “DD-Update

This text-based BEC attack impersonates an executive using display name spoofing and a compromised external account to divert payroll deposits to a fraudulent account.

Attack Date: April 13, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Payroll

This text-based BEC attack impersonates an executive using display name spoofing and a compromised external account to divert payroll deposits to a fraudulent account.

Attack Date: January 27, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “PAYROLL INFORMATION AMENDMENT

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: April 21, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Update Pay Account

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: April 21, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Outstanding AP Report

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: April 12, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “A / P report request

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: April 8, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Re: aging report needed

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a copy of an aging report.

Attack Date: April 8, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Aging Report

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: April 21, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Vendor Payment Request

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: April 21, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Thursday,Jenuary 06, 2022

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: January 6, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Investment Assets

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a fraudulent payment.

Attack Date: April 21, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “Aging Report

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a copy of an aging report.

Attack Date: April 4, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Event/Administrative Expenses

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: April 8, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Payments

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: April 21, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “TODAY

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: April 8, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Zahlung

This text-based BEC attack impersonates an executive using display name spoofing and a maliciously registered domain to request a fraudulent payment.

Attack Date: March 10, 2022
Executive Impersonation Gift Card BEC Attack
Subject: “RESPONSE

This text-based BEC attack impersonated an executive using display name spoofing and a free webmail account to request gift cards.

Attack Date: April 14, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “PAYMENT

This text-based BEC attack impersonates an executive using display name spoofing and a free webmail account to request a fraudulent payment.

Attack Date: April 12, 2022
Executive Impersonation Aging Report BEC Attack
Subject: “A/R Statement

This text-based BEC attack impersonates an executive using display name spoofing to compromise aging reports.

Attack Date: April 18, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “CHANGE DD

This text-based business email compromise attack impersonates an executive using display name impersonation with the goal of diverting payroll information.

Attack Date: February 22, 2022
Executive Impersonation Cryptocurrency Payment Fraud BEC Attack
Subject: “Request

This text-based BEC attack impersonates an executive using display name spoofing and a cryptocurrency theme to request a fraudulent payment.

Attack Date: April 16, 2022

Filters

Attack Vector

Attack Goal

Attack Tactic

Impersonated Party

Attack Type

Theme

Impersonated Brand

Attack Language