Payment Fraud

Employee - Executive

62729fcce533fb5e0e68065b payment20bec 20220428a

62729fcfcf3434e15da8b57c payment20bec 20220428b

62729fdadf13d5d03f5e6d29 payment20bec 20220428c

Maliciously Registered Domain

Spoofed Display Name

New Vendor

Business Email Compromise

Text-based

Hi [Recipient Name], I was just informed that we have an offer accepted by a new vendor which I have been negotiating for some time now. Are you able to process the payment ? so I can forward you a copy of the invoice and W9. Regards, [Impersonated Executive Name] Sent from my iPhone‍

Fake Malware Infection Extortion Attack

Executive Impersonation Payroll Diversion BEC Attack

Executive Impersonation Gift Card BEC Attack

Employee Impersonation Payroll Diversion BEC Attack

Homepage

The Abnormal Attack Vault

Executive Impersonation Payment Fraud BEC Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/executive-impersonation-payment-fraud-bec-attack-2

referrer

robots

{"title":{"title":"Abnormal Intelligence | Executive Impersonation Payment Fraud BEC…"}}

This text-based BEC attack impersonates an executive using display name spoofing, a maliciously registered domain, and a new vendor theme to request a fraudulent payment.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Executive Impersonation Payment Fraud BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party