Uncover the latest attacks sent to our Abnormal customers.
Executive Impersonated in Aging Report Theft
Subject: “Status of Payment

Attackers impersonate an executive to request that an aging report be sent, complete with invoice numbers, payment terms, and client information.

Attack Date: June 29, 2022
Executive Impersonated in LinkedIn Overdue Payment Request
Subject: “Daily Invoice from Linkedln

Attackers impersonate an executive to bolster the validity of a fraudulent invoice in this double-phased attack.

Attack Date: June 29, 2022
Executive Impersonation Used to Elicit Secrecy in Employee Surprise
Subject: “routine ­­staff appreciation

Attackers impersonate an executive and rely on human willingness to help in order to request a surprise appreciation gift for the team.

Attack Date: June 29, 2022
Executive Impersonated in Payroll Diversion Scheme
Subject: “Update Payroll Account

Cybercriminals impersonate an executive and target the payroll administrator in an ask to update direct deposit information to a bank account owned by the attacker.

Attack Date: June 29, 2022
Vendor Impersonated with Hijacked Email Thread to Steal Payments
Subject: “RE: FW: [Hijacked Thread Subject]

Attackers impersonate a vendor using a hijacked email thread and a lookalike domain to request payment for a fraudulent invoice worth nearly $10,000.

Attack Date: June 29, 2022
Executive Impersonated in Legal Matter to Request Overdue Payment
Subject: “Unpaid Invoice

Attackers impersonate an executive and use a fake email chain to request an overdue payment of over £65,000, adding information about a fake legal case to increase the urgency to pay.

Attack Date: June 29, 2022
Dutch Executive Impersonation Payment Fraud BEC Attack
Subject: “[Recipient First Name]

This text-based Dutch-language BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a free webmail account to request a fraudulent payment.

Attack Date: June 29, 2022
Fake Document Link-based Malware Attack
Subject: “Re: [Hijacked Threat Subject]

This link-based attack uses a hijacked email thread and a fake document theme to deliver malware.

Attack Date: June 28, 2022
Norton Fake Payment Receipt Fake Billing Scam
Subject: “Thank you for your payment

This text-based fake billing scam impersonates Norton using a content obfuscation via image and a fake payment receipt theme.

Attack Date: June 28, 2022
DHL Fake Shipping Notification HTML Attachment Credential Phishing Attack
Subject: “Shipment Details

This payload-based attack impersonates DHL using a free webmail account and a fake shipping notification theme to steal credentials.

Attack Date: June 28, 2022
Expired Account Credential Phishing Attack
Subject: “[Target Company Name] Urgent deactivation alert

This link-based attack uses a personalized email subject, a maliciously registered domain, and an expired account theme to steal credentials.

Attack Date: June 28, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “FYI !!!

This text-based BEC attack impersonates an executive using a spoofed email address, a matching malicious domain username, and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 28, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “[Target Company Name] AGING REQUEST

This text-based BEC attack impersonates an executive using a personalized email subject, a maliciously registered domain, and a spoofed display name to request a copy of an aging report.

Attack Date: June 28, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Re:

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 28, 2022
Dutch Executive Impersonation Gift Card Request BEC Attack
Subject: “[Recipient First Name]

This text-based Dutch-language BEC attack impersonates an executive using a personalized email subject, a cell phone number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: June 28, 2022
Payment Inquiry Credential Phishing Attack
Subject: “RE: PO-18009612 Payment Statement

This link-based attack impersonates a vendor/supplier using an external compromised account and a payment inquiry theme to steal credentials.

Attack Date: June 28, 2022
Vendor Impersonation Payment Inquiry Credential Phishing Attack
Subject: “Aged Receivables Status

This text-based attack impersonates a vendor/supplier using a look-alike domain, a spoofed display name, and a payment inquiry theme to steal credentials.

Attack Date: June 27, 2022
Fake Invoice Credential Phishing Attack
Subject: “Paid Invoice for [Vendor Company Name] 6/27/2022

This link-based attack impersonates a vendor/supplier using an external compromised account and a fake invoice theme to steal credentials.

Attack Date: June 27, 2022
Vendor Impersonation Payment Inquiry BEC Attack
Subject: “Re: [Vendor Company Name] - Open Invoice

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain and a payment inquiry theme to request a fraudulent payment.

Attack Date: June 27, 2022
German Executive Impersonation Gift Card Request BEC Attack
Subject: “ANFRAGE

This text-based German-language BEC attack impersonates an executive using a spoofed display name and a free webmail account to request the purchase of gift cards.

Attack Date: June 27, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Changing The P-Stub..

This text-based BEC attack impersonates an executive using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 27, 2022
Executive Impersonation Payroll Diversion BEC Attack
Subject: “Instant response!!

This text-based BEC attack impersonates an executive using a spoofed email address, a matching malicious domain username, and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Attack Date: June 27, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Availability

This text-based BEC attack impersonates an executive using a spoofed email address and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 27, 2022
Executive Impersonation Overdue Payment Payment Fraud BEC Attack
Subject: “Re: SIN008750-June-2022

This text-based BEC attack impersonates an executive using a spoofed display name, a free webmail account, and an overdue payment theme to request a fraudulent payment.

Attack Date: June 27, 2022

Filters

Attack Vector

Attack Goal

Attack Tactic

Impersonated Party

Attack Type

Theme

Impersonated Brand

Attack Language