Uncover the latest attacks sent to our Abnormal customers.
Fake Document Link-based Malware Attack
Subject: “Re: School Advisory Council

This link-based attack impersonates an external third party using an external compromised account and a fake document theme to deliver malware.

Attack Date: June 16, 2022
HTML Attachment Malware Attack
Subject: “Re: [Hijacked Thread Subject]

This payload-based attack impersonates an external third party using a hijacked email thread and an external compromised account to deliver malware.

Attack Date: June 13, 2022
Evernote Fake Document Credential Phishing Attack
Subject: “[Compromised Third Party Company Name]

This link-based attack impersonates Evernote and an external third party using a content obfuscation via image, an external compromised account, and a fake document theme to steal credentials.

Attack Date: May 18, 2022
Debt Collection Legal Matter Extortion Attack
Subject: “Court Proceedings Notice

This text-based extortion attack uses a free webmail account, a debt collection theme, and a legal matter theme to demand a payment.

Attack Date: May 18, 2022
Adobe Fake Document Credential Phishing Attack
Subject: “Westpac_Remittance05152022

This link-based attack impersonates Adobe and an external third party using a fake document theme to steal credentials.

Attack Date: May 16, 2022
Bid Proposal Credential Phishing Attack
Subject: “NEW BID INVITATION FROM [IMPERSONATED THIRD PARTY NAME]

This link-based attack impersonates an external third party using an external compromised account and a bid proposal theme to steal credentials.

Attack Date: May 11, 2022
External Third Party Fake Document Credential Phishing Attack
Subject: “Price Change Notification for 000126554434

This link-based attack impersonates an external third party using an external compromised account and a fake document theme to steal credentials.

Attack Date: May 10, 2022
External Third Party Overdue Payment Legal Matter BEC Attack
Subject: “Civil Case File #291786

This text-based BEC attack impersonates an external third party using a maliciously registered domain, an overdue payment theme, and a legal matter theme to request a fraudulent payment.

Attack Date: March 21, 2022
IRS Overdue Payment BEC Attack
Subject: “Balance Due Reminder Notice

This text-based BEC attack impersonates the IRS using a look-alike domain and an overdue payment theme to request a fraudulent payment.

Attack Date: March 22, 2022
Evernote Fake Payment Receipt Credential Phishing Attack
Subject: “View Attached Payment

This link-based attack impersonates Evernote and an external third party using a fake attachment, compromised external account, and a fake payment receipt theme to steal credentials.

Attack Date: May 4, 2022
Fake Invoice HTML Attachment Credential Phishing Attack
Subject: “Payment Advice Notification

This payload-based attack impersonates an external third party using an HTML attachment and fake invoice theme to steal credentials.

Attack Date: March 31, 2022
External Third Party Impersonation Debt Collection BEC Attack
Subject: “OUTSTANDING BILL

This text-based BEC attack impersonates an external third party using a look-alike domain, debt collection theme, and overdue payment theme to request a fraudulent payment.

Attack Date: April 27, 2022
External Third Party Impersonation Overdue Payment BEC Attack
Subject: “Re: Eurocontrol Unpaid Invoices!!!

This text-based BEC attack impersonates an external third party using display name spoofing, a free webmail account, overdue payment theme, and payment account update theme to request a fraudulent payment.

Attack Date: April 25, 2022
External Third Party Impersonation Payment Inquiry BEC Attack
Subject: “Re: EUROCONTROL NAV. CHARGES

This text-based BEC attack impersonates an external third party using display name spoofing, a look-alike domain, and a payment inquiry theme to request a fraudulent payment.

Attack Date: April 25, 2022

Filters

Attack Vector

Attack Goal

Attack Tactic

Impersonated Party

Attack Type

Theme

Impersonated Brand

Attack Language