REMAX “Hot Properties” Email Phishing Fraud

One of the most effective tactics in use by spammers today is the hijacking/theft of legitimate user’s email accounts for use in furthering spam campaigns.

There are actually four distinct reasons why it is so powerful for spammers to be able to send spam from a previously legitimate user’s email account:

  1. Once the account is stolen, the spammer’s software can read through the address book, inbox, sent mail and all other folders scraping the email addresses of people the legitimate user has corresponded with  in the past. These emails then make excellent targets for sending spam.
  2. Email from actual AOL, Gmail, Hotmail, Yahoo and other ubiquitous email services are much less likely to be blocked by spam filtering systems.
  3. Even when a spam filter correctly recognizes that an email is spam, end users often have added such senders to their Allow or White lists, thus forcing delivery from the now compromised account.
  4. Further, recipients commonly retrieve spam from their filtering system when they recognize the sending address, but don’t realize the sender’s account has been compromised.

When you add it all up, there really is no better method of getting your spam delivered, and then actually opened by the target recipient.

To that end, one of the most successful and persistent tactics for stealing email accounts from the popular mail systems is to use an already hijacked email account to send messages purporting to be about hot real estate listings, typically with subject lines like:

  • Hi
  • HOT PROPERTIES
  • GREAT DEALS ON HOME YOU CANT RESIST!
  • PROPERTY OFFER!!
  • Properties For Investment
  • HOT PROPERTIES ALERT !!!
  • Cheap Properties for sale
  • GREAT PROPERTY INVESTMENT
  • Other variations, often with misspellings

The email content of such messages will include offers to see such properties, typically written in an informal tone as they are sending this message to friends and acquaintances found in the stolen sending account’s address book and saved emails.

Examples include:

Check out the latest and available properties, CLICK HERE. for immediate access.
Please sign on with your email.
-
Found this  new HOT PROPERTIES in your area by REMAX PROPERTIES. Guess you’ll have interest
-
Feel free to view any of the Properties and let us know the one you are interested in. CLICK HERE
-
Check out this properties, CLICK HERE. and log in with your email. The prices are very affordable.
-
I have uploaded the offers in the link Click here CLICK HERE  to get full access
-
Check out this Foreclosed properties good for investment Click Here and log in with your email.
-
Check out this properties, CLICK HERE and log in with your email they have good offer and you can get up to 25%- 45% on each property. If you are interested follow the link and login with your email (No Spam) It’s only needed for a secure site with sender info.Please forward to others

The emails often include the hijacked account owner’s full email signature file, which will make the email seem more legitimate to the recipient.

Regardless of the exact subject and content, following the link provided will lead you to a site that offers to grant you access to the listings once you sign in with your email account credentials.

ReMax Login Phishing Fraud

Click hear for Larger Image

The only thing that remains consistent with this email Phishing fraud is the claim to be allowing access to a Re/MAX listing site. This is no doubt do to the fact that the size of the RE/MAX real estate network  and it’s international footprint allows the fraud email to have a sense of legitimacy for the widest possible number of recipients.

Clicking on any of the mail systems will generate a pop-up log in screen where you can provide the spammers with your actual email account’s login and username:

ReMax Login Phishing Fraud Login Screen

Click for Larger Image

Why so many people are so willing to provide their private email credentials in this manner is anyone’s guess, but they do, and in steady and consistent numbers.

You’ve no doubt seen emails from friends that say things like “My Email’s Been Hacked” which, in reality usually translates to: “I’ve been tricked into giving away my email account” – though often the user’s don’t realize this is the case.

And to help make sure that such user’s don’t immediately start to wonder why they just voluntarily gave a spammer unrestricted access to their email account, the fake login page will redirect to a page that tries to convince the user that all is well. Sometimes the script actually takes the user to the real RE/MAX website.

However, that might make the visitor wonder why they’re not seeing these promised properties. So instead, a common (and clever) result is to present a completely bogus error page, usually claiming the listing or page is no longer available, and then a offers a list of links which all really do go to legitimate RE/MAX pages and sites.

ReMax Login Phishing Fraud Redirect Page

Click for Larger Image

The end result is that the spammer gets access to the recipient’s email account, while at the same time this recipient is now exploring some part of the RE/MAX web site looking for these “Hot Properties” and no longer thinking about what they have done to themselves and all of their friends, family and contacts.

Check out the latest and available properties, CLICK HERE. for immediate access.
Please sign on with your email.
-
Found this  new HOT PROPERTIES in your area by REMAX PROPERTIES. Guess you’ll have interest
-
Feel free to view any of the Properties and let us know the one you are interested in. CLICK HERE
-
Check out this properties, CLICK HERE. and log in with your email. The prices are very affordable.
-
I have uploaded the offers in the link Click here CLICK HERE  to get full access
-
Check out this properties, CLICK HERE and log in with your email they have good offer and you can get up to 25%- 45% on each property. If you are interested follow the link and login with your email (No Spam) It’s only needed for a secure site with sender info.Please forward to others.

- -

OnlyMyEmail is an award winning hosted spam filtering service and business email hosting provider. Our enterprise cloud computing anti-spam solution, the MX-Defender, has the highest capture rate of any spam filter ever tested in the VBSpam Challenge, blocking a record setting 99.9993% of all malicious and junk email.

Our Personal spam filtering system is also a Software as a Service (SaaS) solution and has won both the PC World "World Class Award" and also the PC Magazine "Editor's Choice Award."

OME-Kids is a webmail solution that protects children from spam and other harmful emails. OME-Kids offers unique Parental Controls that allow you to choose the level of security and oversight that's right for your child.

Tags: , , ,

Comments are closed.