Credential Theft

External Party - Vendor/Supplier

627e87f7d3734a8785e7815d payload20phish 20220512

627e87fdd2fcb12eb191dab5 payload20phish 20220512b

External Compromised Account

Fake Invoice

Credential Phishing

Payload-based

Please see attached for a copy of your new monthly support invoice. If there are any questions or concerns, please feel free to contact me at any time.   ‍Thanks,

External Third Party Fake Document Credential Phishing Attack

Employee Impersonation Payroll Diversion BEC Attack

Employee Impersonation Community Service Gift Card Request BEC Attack

Executive Impersonation Overdue Payment Payment Fraud BEC Attack

Homepage

The Abnormal Attack Vault

Fake Invoice HTML Attachment Credential Phishing Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/fake-invoice-html-attachment-credential-phishing-attack-2

referrer

robots

{"title":{"title":"Abnormal Intelligence | Fake Invoice HTML Attachment Credential…"}}

This link-based attack impersonates a vendor/supplier using a compromised external account and a fake invoice theme to steal credentials.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Fake Invoice HTML Attachment Credential Phishing Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party