Select Page

For more phishing samples, see my phishy email collection.

This is a pretty good phishing scam because Quickbooks emails electronic invoices all the time and Accounts Payable departments are used to seeing them. The only giveaway is hovering over the embedded link. Bummer the audience is limited to companies doing business with somebody named TCR Logistics. Or sloppy A/P departments.

A nice spear-phishing attack might impersonate actual suppliers for victim organizations. That attack would get an A. I’ll give this one a B. But now that you’ve seen this sample, you won’t fall for fake invoices. Right?