Payment Fraud

External Party - Vendor/Supplier

627aa10a7d74a2902ee22e6b vendor20bec 20220509

Look-alike Domain

Overdue Payment

Business Email Compromise

Text-based

Hi [Recipient First Name]‍I'm writing to inform you I haven't received payment for invoice number 003880012, which was due some months ago. I originally sent the invoice on September 27, 2021.Please let me know if you have any questions about this invoice. I'll call you tomorrow if I don't hear from you to ensure this email reaches you.‍Thank you for your time!‍Best Regards, [Impersonated Vendor Employee Name] [Impersonated Vendor Company Name] ‍

Microsoft Subscription Renewal Fake Billing Scam

Caliber Home Loans Real Estate Transaction Fake Document Credential Phishing Attack

Vendor Impersonation Overdue Payment Account Update BEC Attack

Executive Impersonation Payment Fraud BEC Attack

Homepage

The Abnormal Attack Vault

Vendor Impersonation Overdue Payment BEC Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/vendor-impersonation-overdue-payment-bec-attack-2

referrer

robots

{"title":{"title":"Abnormal Intelligence | Vendor Impersonation Overdue Payment BEC…"}}

This text-based BEC attack impersonates a vendor/supplier using a look-alike domain and an overdue payment theme to request a fraudulent payment.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Vendor Impersonation Overdue Payment BEC Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Party