Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CFINS.COM

Group: clop

Discovered by ransomware.live: 2023-07-17

Estimated attack date: 2023-07-17

Description:

Crum & Forster Insurance - Crum & Forster


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mxa-00380701.gslb.pphosted.com.
  • mxb-00380701.gslb.pphosted.com.
TXT Records
  • google-site-verification=GHb30sRYJ9GsDJ_jMr-OxDWtfqwmM7jKDhYa2ZegzzU
  • _globalsign-domain-verification=vD3pYkZIidUhtRxI-jZdZGSwkCG9v99ECjFvD43__m
  • Dynatrace-site-verification=921a6c22-4b0d-4e3e-a14c-85b3d35615e1__c5a4t307to657r5ga4bvibou7m
  • postman-domain-verification=8fb6c9635894968b652bb4730519efe3e327ac4177a3c7bea5411759b55435a783763fbabb805050834284f5f9f0d1d5ff513400b6297b6b8e0c00ae34f71477
  • M9gR9XqEmcA3odnX4pXyTBN38C7NlWuLB2xv4yeaIX1Oyt2lBbox/tCGAgoVxYf36x25H11HhDlHludJh83HNg==
  • workplace-domain-verification=0d5c63b8-01d8-432f-89ed-a253cd58de19
  • atlassian-domain-verification=9GXnis/xjNbYMhhQwPRQg3LtLbNcGgLHrUW2qhgZvpsd7qBcvzmlDGlVIpTkHZdy
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com include:spf.protection.outlook.com -all
  • ms-domain-verification=74c1f351-07b7-43ec-95d9-4a7af2aa44fb
  • insomnia-validation=dee3f496fe9d4bab83fd19276e7c57e066e083cde6935e458b6662dd5656e65a
  • google-site-verification=NCy3drH6VVvwhQFjAAVRZZbTBvTusI9ehdDDO2ag65U
  • twilio-domain-verification=fb80f8afd49d30e48d7381ce94225985
  • e2ma-verification=rpggb
  • zapier-domain-verification-challenge=d958a57a-4b35-4e12-8884-be8af37a9adf
  • ciscocidomainverification=36918a299d0c945bb37f41bf25d6f3c3dda4f6d5dcdf6a3e5a26b3c4facc72a8
  • dropbox-domain-verification=y5i0b67jh883
  • logmein-verification-code=9cfnyI6kYvdsL9X6oMIRPup6l
Cloud / SaaS Services Detected
Atlassian Box Dropbox Twilio LogMeIn Proofpoint

Leak Screenshot:

Leak Screenshot