Credential Theft

External Party - Vendor/Supplier

628519f9c8b23d784984a2c6 1703423063

62851c891ce411be9409d35a vendor20cred20phishing 20220517b

62851c8d4f7336ce359c3d7c vendor20cred20phishing 20220517c

Fake Attachment

External Compromised Account

Fake Invoice

Credential Phishing

Link-based

Hello, Please see attached for [Compromised Third Party Company Name] Inv 41063. Thank you. [Compromised Third Party Employee Signature]

Fake Invoice Word Document Attachment Credential Phishing Attack

Executive Impersonation Overdue Payment Legal Matter Payment Fraud BEC Attack

Vendor Impersonation Overdue Payment BEC Attack

Employee Impersonation Payroll Diversion BEC Attack

Homepage

The Abnormal Attack Vault

Fake Invoice Credential Phishing Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/fake-invoice-credential-phishing-attack-5562760367494553894

referrer

robots

{"title":{"title":"Abnormal Intelligence | Fake Invoice Credential Phishing Attack"}}

This link-based attack impersonates a vendor/supplier using a fake attachment, an external compromised account, and a fake invoice theme to steal credentials.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Fake Invoice Credential Phishing Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party