Payment Fraud

External Party - Vendor/Supplier

62b5ccc5b80b7b7961f2d879 2084083844

Look-alike Domain

Spoofed Display Name

Account Update

Business Email Compromise

Text-based

Hello, We would like to keep ACH payment setup; however, our receiving information has changed. Kindly provide the Vendor update form. [Impersonated Vendor Employee Name]Accounts Receivable[Impersonated Vendor Company Name]

Microsoft Fake Document Credential Phishing Attack

Vendor Impersonation Account Update BEC Attack

Executive Impersonation Payment Fraud BEC Attack

Romanian Executive Impersonation Payment Fraud BEC Attack

Homepage

The Abnormal Attack Vault

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/vendor-impersonation-account-update-bec-attack-6592856389104133325

referrer

robots

{"title":{"title":"Abnormal Intelligence | Vendor Impersonation Account Update BEC Attack"}}

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain, a spoofed display name, and an account update theme to request a fraudulent payment.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Vendor Impersonation Account Update BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party