Payroll Diversion

Employee - Other

6275521f4b3218411dae5e08 payroll20bec 20220505

Free Webmail Account

Spoofed Display Name

Business Email Compromise

Text-based

Hello,I would like to inform you that my current bank details on my profile has been closed due to some personal reason, so am getting a replacement for it which i want to have it updated for my next Paychex.Thank you, [Impersonated Employee First Name]

Vendor Impersonation Account Update BEC Attack

Executive Impersonation Payment Fraud BEC Attack

Italian Executive Impersonation Payroll Diversion BEC Attack

Executive Impersonation Payroll Diversion BEC Attack

Homepage

The Abnormal Attack Vault

Employee Impersonation Payroll Diversion BEC Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/employee-impersonation-payroll-diversion-bec-attack-4

referrer

robots

{"title":{"title":"Abnormal Intelligence | Employee Impersonation Payroll Diversion BEC…"}}

This text-based BEC attack impersonates an employee using display name spoofing and a free webmail account to divert payroll deposits to a fraudulent account.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Employee Impersonation Payroll Diversion BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Impersonated Party