It never stops with National Association of Mortgage Field Services (NAMFS) members. On Friday, the HUD Awardee for the M&M FSM 3.12 contract, JGM Property Group, originated an email to the International Association of Field Service Technicians (IAFST) which appeared to have an injected malware attached. Specifically, it requested that the IAFST pay an Invoice and was sent from a former employee, Dawn Gill. The concerning point on this is that the SFP, DKIM, and DMARC were all on point. It originated from a confirmed hacked GoDaddy domain server. Here is the snapshot,
The information has been submitted to HUD; however, it poses a larger problem for the Mortgage Field Services Industry as Foreclosurepedia has pointed out, for years. We touched upon this in our article, last week, which reexamined the hacker ridden GoDaddy and how both the Outlook and Google Workspace email accounts had been compromised. It also buttressed how using the soft underbelly of the Industry could be used as a shape changing attack upon not only the US government, but how SAM.gov could be penetrated.
Foreclosurepedia, in conjunction with the IAFST, are hereby putting out an alert to avoid all email accounts whose origination is from GoDaddy hosted elements for the foreseeable future as well as anything from JGM Property Group.