下载PDF
实例探究 > Debt Collector Impersonation / Invoice Fraud Attack

Debt Collector Impersonation / Invoice Fraud Attack

技术
  • 网络安全和隐私 - 身份认证管理
  • 网络安全和隐私 - 网络安全
  • 网络安全和隐私 - 安全合规
适用行业
  • 零售
  • Professional Service
适用功能
  • 商业运营
  • 销售与市场营销
用例
  • 欺诈识别
服务
  • 系统集成
  • 网络安全服务
  • 培训
挑战
The retailer was targeted by an attacker impersonating a debt collection agency using a lookalike domain. The attacker also spoofed the retailer's COO to add credibility to the fraudulent invoice request. The attack involved sophisticated social engineering techniques and spanned six back-and-forth conversations over one day. The urgency created by the debt collection pretext led employees to overlook red flags and begin processing the payment.
关于客户
The customer is a global retailer that was targeted by a sophisticated invoice fraud attack. The retailer operates on a large scale, dealing with numerous vendors and financial transactions daily. This makes them a prime target for Business Email Compromise (BEC) attacks. The retailer's employees are responsible for processing invoices and ensuring timely payments to avoid penalties and maintain good vendor relationships. The company has a significant digital presence and relies on email communication for its operations.
解决方案
Abnormal Security detected and stopped the attack using its Abnormal Behavior Technology (ABX). ABX combines the Abnormal Identity Model, Abnormal Relationship Graph, and Abnormal Content Analysis to detect and prevent such attacks. Specific techniques used included identity modeling with VendorBase, domain impersonation detection, relationship graph analysis, and content analysis using natural language processing. The solution was deployed in passive mode, allowing for a comprehensive view of the attack lifecycle without impacting email flow. Abnormal Security's platform integrates seamlessly with Office 365 and G Suite, requiring no configuration and minimal setup time.
运营影响
  • Abnormal Security's detection capabilities prevented the fraudulent payment from being processed, safeguarding nearly $30,000.
  • The platform's ability to detect domain impersonation and spoofed emails provided a robust defense against sophisticated social engineering attacks.
  • The seamless integration with existing email systems ensured that the retailer's operations were not disrupted during the detection and prevention process.
数量效益
  • Prevented a financial loss of nearly $30,000.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.