Back to All Attacks
Attack Date: May 10, 2022
Vendor Impersonation Account Update BEC Attack
This text-based BEC attack impersonates a vendor/supplier using a spoofed display name, a look-alike domain, and an account update theme to request a fraudulent payment.
Email Content
Subject
[Vendor Name] invoice payment
Body
Good day,
This is a follow up on all of our invoices past due, can you let us know if any will be processed this week, Please also note that we have updated our remittance information and want payment sent to us via ACH direct deposit to our updated bank account.
Thank you.
[Impersonated Vendor Employee Name]
[Impersonated Vendor Company Name]
Accounts Receivable
[Impersonated Vendor Contact Details]