Credential Theft

DocuSign

External Party - Vendor/Supplier

627e8e896eb562e7651be0bf payload20phish 20220512202

627e8e8e2d6d9244f510424f invoice20cred20phish 20220512b

627e8e9133b6145e7f04e398 invoice20cred20phish 20220512c

External Compromised Account

Fake Invoice

Credential Phishing

Payload-based

Executive Impersonation Aging Report Compromise BEC Attack

Executive Impersonation Employee Incentive Gift Card Request BEC Attack

Chase Fake Payment Receipt Credential Phishing Attack

Bid Proposal Credential Phishing Attack

Homepage

The Abnormal Attack Vault

Fake Invoice Word Document Attachment Credential Phishing Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/fake-invoice-word-document-attachment-credential-phishing-attack

referrer

robots

{"title":{"title":"Abnormal Intelligence | Fake Invoice Word Document Attachment…"}}

This payload-based attack impersonates a vendor/supplier and DocuSign using an external compromised account, a Word Document attachment, and a fake invoice theme to steal credentials.

<p>Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.</p>

Abnormal Intelligence Email Subscribe

Top Bar

<p>New BEC Insights from Chris Krebs, Former Director of CISA</p>

Fake Invoice Word Document Attachment Credential Phishing Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party

Impersonated Brands