Uncover the latest attacks sent to our Abnormal customers.
Finnish Executive Impersonation Gift Card Request BEC Attack
Subject: “Hei [Recipient First Name]

This text-based Finnish-language BEC attack impersonates an executive using a personalized email subject, an external compromised account, and a spoofed display name to request the purchase of gift cards.

Attack Date: June 27, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Oversea payment

This text-based BEC attack impersonates an executive using a free webmail account, a spoofed display name, and a new vendor theme to request a fraudulent payment.

Attack Date: June 24, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “Good Afternoon [Recipient First Name]

This text-based BEC attack impersonates an executive using a spoofed email address, a personalized email subject, and a maliciously registered domain to request a copy of an aging report.

Attack Date: June 24, 2022
PayPal Fake Payment Receipt Fake Billing Scam
Subject: “[Recipient Name], here is your bill

This text-based fake billing scam impersonates PayPal using a personalized email subject, a free webmail account, and a fake payment receipt theme.

Attack Date: June 24, 2022
Walmart Fake Payment Receipt Fake Billing Scam
Subject: “CREDIT CARD PAYMENT INVOICE

This text-based fake billing scam impersonates Walmart using an external compromised account and a fake payment receipt theme.

Attack Date: June 24, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “Aged Debtors File

This text-based BEC attack impersonates an executive using a maliciously registered domain and a spoofed display name to request a copy of an aging report.

Attack Date: June 23, 2022
Executive Impersonation Mergers & Acquisitions Payment Fraud BEC Attack
Subject: “Investment Assets

This text-based BEC attack impersonates an executive using a spoofed display name, a maliciously registered domain, and a mergers & acquisitions theme to request a fraudulent payment.

Attack Date: June 23, 2022
Executive Impersonation New Vendor Payment Fraud BEC Attack
Subject: “Payout Request

This text-based BEC attack impersonates an executive using a maliciously registered domain, a spoofed display name, and a new vendor theme to request a fraudulent payment.

Attack Date: June 23, 2022
Vendor Impersonation Account Update BEC Attack
Subject: “RE: [Target Company Name] invoice May-22

This text-based BEC attack impersonates a vendor/supplier using a hijacked email thread, a look-alike domain, an external compromised account, and an account update theme to request a fraudulent payment.

Attack Date: June 23, 2022
Vendor Impersonation Account Update BEC Attack
Subject: “Please Advise on payment status

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain, a spoofed display name, and an account update theme to request a fraudulent payment.

Attack Date: June 23, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Supply

This text-based BEC attack impersonates an executive using a maliciously registered domain and a spoofed display name to request a fraudulent payment.

Attack Date: June 23, 2022
Finnish Executive Impersonation Gift Card Request BEC Attack
Subject: “[Target Company Name]

This text-based Finnish-language BEC attack impersonates an executive using a personalized email subject, a WhatsApp number request, a spoofed display name, and a free webmail account to request the purchase of gift cards.

Attack Date: June 23, 2022
Employee Impersonation Payroll Diversion BEC Attack
Subject: “Information on a pay change

This text-based BEC attack impersonates an employee using a spoofed display name and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 22, 2022
Fake Document Link-based Malware Attack
Subject: “Re: AMENDED SALE AGREEMENT

This link-based attack impersonates an employee using a hijacked email thread, an external compromised account, a spoofed display name, and a fake document theme to deliver malware.

Attack Date: June 22, 2022
Vendor Impersonation Account Update BEC Attack
Subject: “[Vendor Company Name]-PAYMENT UPDATE

This text-based BEC attack impersonates a vendor/supplier using a spoofed email address, a look-alike domain, a personalized email subject, and an account update theme to request a fraudulent payment.

Attack Date: June 22, 2022
Executive Impersonation Aging Report Theft BEC Attack
Subject: “[Target Company Name] Past Receivables

This text-based BEC attack impersonates an executive using a personalized email subject, a maliciously registered domain, and a spoofed display name to request a copy of an aging report.

Attack Date: June 22, 2022
Employee Impersonation Employee Incentive Gift Card Request BEC Attack
Subject: “Surprise Incentive

This text-based BEC attack impersonates an employee using a maliciously registered domain, a spoofed display name, and an employee incentive theme to request the purchase of gift cards.

Attack Date: June 22, 2022
Employee Impersonation Payroll Diversion BEC Attack
Subject: “My Direct Deposit Guide

This text-based BEC attack impersonates an employee using a spoofed email address and a free webmail account to divert payroll deposits to a fraudulent account.

Attack Date: June 22, 2022
German Executive Impersonation Payment Fraud BEC Attack
Subject: “BaFin Projekt

This text-based German-language BEC attack impersonates an executive using an extended spoofed display name and a maliciously registered domain to request a fraudulent payment.

Attack Date: June 22, 2022
Executive Impersonation Payment Fraud BEC Attack
Subject: “Fwd: [Vendor Company Name] Invoice #15250

This text-based BEC attack impersonates an executive using a fake email chain, a look-alike domain, and a spoofed display name to request a fraudulent payment.

Attack Date: June 21, 2022
Romanian Executive Impersonation Payment Fraud BEC Attack
Subject: “Transfer internațional

This text-based Romanian-language BEC attack impersonates an executive using a spoofed email address and a free webmail account to request a fraudulent payment.

Attack Date: June 21, 2022
Vendor Impersonation Account Update BEC Attack
Subject: “Vendor update form

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain, a spoofed display name, and an account update theme to request a fraudulent payment.

Attack Date: June 21, 2022
Vendor Impersonation Account Update BEC Attack
Subject: “Outstanding invoices

This text-based BEC attack impersonates a vendor/supplier using a hijacked email thread, a look-alike domain, a spoofed display name, and an account update theme to request a fraudulent payment.

Attack Date: June 16, 2022
Microsoft Fake Document Credential Phishing Attack
Subject: “Employee PayStub Registration

This link-based attack impersonates Microsoft using a maliciously registered domain and a fake document theme to steal credentials.

Attack Date: June 21, 2022

Filters

Attack Vector

Attack Goal

Attack Tactic

Impersonated Party

Attack Type

Theme

Impersonated Brand

Attack Language