Payment Fraud

Employee - Executive

628d3c3f43131a3887263505 116373254

Matching Malicious Domain Username

Free Webmail Account

Spoofed Display Name

Business Email Compromise

Text-based

Hi [Recipient First Name],  Can you initiate a transfer that goes out today? If you could expedite this, notify me when you are set to proceed so I can forward an attachment of the payment instructions. Thanks,  [Executive First Name]

Vendor Impersonation Overdue Payment BEC Attack

Dutch Employee Impersonation Payroll Diversion BEC Attack

Executive Impersonation Community Service Gift Card Request BEC Attack

Vendor Impersonation Payment Inquiry BEC Attack

Homepage

The Abnormal Attack Vault

Executive Impersonation Payment Fraud BEC Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/executive-impersonation-payment-fraud-bec-attack-1397667337917012207

referrer

robots

{"title":{"title":"Abnormal Intelligence | Executive Impersonation Payment Fraud BEC…"}}

This text-based BEC attack impersonates an executive using a matching malicious domain username, a free webmail account, and a spoofed display name to request a fraudulent payment.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Executive Impersonation Payment Fraud BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Impersonated Party