Payment Fraud

External Party - Vendor/Supplier

6272d42b3dd2766b12d79676 vendor20bec 20220426

Look-alike Domain

Account Update

Business Email Compromise

Text-based

Hi [Recipient First Name], ‍Going forward with your order, Before we can continue proceeding with your order. Be informed we have moved into the advanced age of billings. We are only set up to receive payments electronically via ACH/Wire Transfers. Do not use the previous information for remittance. it is now outdated. ‍Kindly let me know which you prefer in the above so we can proceed further with your PO. Would so much appreciate your earliest confirmation Regards, [Vendor Employee Name][Vendor Employee Title]

Executive Impersonation W-2 Theft BEC Attack

Employee Impersonation Payment Fraud BEC Attack

Vendor Impersonation Payment Inquiry BEC Attack

Executive Impersonation Aging Report BEC Attack

Homepage

The Abnormal Attack Vault

Vendor Impersonation Account Update BEC Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/vendor-impersonation-account-update-bec-attack

referrer

robots

{"title":{"title":"Abnormal Intelligence | Vendor Impersonation Account Update BEC Attack"}}

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain, display name spoofing, and a payment account update theme to request a fraudulent payment.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Vendor Impersonation Account Update BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party