Back to All Attacks
Attack Date: May 17, 2022
Vendor Impersonation Overdue Payment BEC Attack
This text-based BEC attack impersonates a vendor/supplier using a spoofed email address, a look-alike domain, a matching malicious domain username, and an overdue payment theme to request a fraudulent payment.
Email Content
Subject
Overdue Account
Body
Hello,
Your invoices are now past due - kindly confirm the payment dates.
Let me know if you require copies.
Kind Regards,
[Impersonated Vendor Employee Name]
Accounts Department
[Impersonated Vendor Company Name]
[Impersonated Vendor Company Address]