Credential Theft

External Party - Vendor/Supplier

62851d9351a9a239ff77b1ee vendor20payload20cred20phishing 20220517

62851d98d61b93688d83c6de vendor20payload20cred20phishing 20220517b

62851d9a66b062e3b640202b vendor20payload20cred20phishing 20220517c

62851d9d05080f4c653f24b0 vendor20payload20cred20phishing 20220517d

62851da005080f68bd3f24ed vendor20payload20cred20phishing 20220517e

External Compromised Account

Fake Invoice

Credential Phishing

Payload-based

Hello, Can you please verify that the attached invoice has been submitted for payment. Please feel free to contact me with any questions you may have. Thank you, [Compromised Third Party Name][Compromised Third Party Email Address]

German Legal Matter PDF Attachment Extortion Attack

Employee Impersonation Payroll Diversion BEC Attack

Fake Invoice Credential Phishing Attack

Executive Impersonation Overdue Payment Legal Matter Payment Fraud BEC Attack

Homepage

The Abnormal Attack Vault

Fake Invoice Word Document Attachment Credential Phishing Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/fake-invoice-word-document-attachment-credential-phishing-attack-8084211880181413101

referrer

robots

{"title":{"title":"Abnormal Intelligence | Fake Invoice Word Document Attachment…"}}

This payload-based attack impersonates a vendor/supplier using an external compromised account and a fake invoice theme to steal credentials.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Fake Invoice Word Document Attachment Credential Phishing Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party