Payroll Diversion

Employee - Executive

62bb44087129e9a1eec069fd 161792939

Matching Malicious Domain Username

Maliciously Registered Domain

Spoofed Email Address

Business Email Compromise

Text-based

Dear [Recipient First Name],Sending this as regards an update on my Bank details and would like to request that my Paycheck information be changed from it's current profile to the new account details. Can the change be effective for the current pay date? Yours sincerely [Executive Name]

Executive Impersonation Overdue Payment Payment Fraud BEC Attack

Executive Impersonation Payment Fraud BEC Attack

German Executive Impersonation Gift Card Request BEC Attack

Executive Impersonation Payroll Diversion BEC Attack

Homepage

The Abnormal Attack Vault

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/executive-impersonation-payroll-diversion-bec-attack-9150067914897395820

referrer

robots

{"title":{"title":"Abnormal Intelligence | Executive Impersonation Payroll Diversion BEC…"}}

This text-based BEC attack impersonates an executive using a spoofed email address, a matching malicious domain username, and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Executive Impersonation Payroll Diversion BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Impersonated Party