Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CHEVRONFCU.ORG

Group: clop

Discovered by ransomware.live: 2023-07-26

Estimated attack date: 2023-07-26

Description:

Chevron Federal Credit Union

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 29

Third Party Employee Credentials: 0

External Attack Surface: 16


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse-complaints squarespace.com
MX Records
  • mxa-00028c01.gslb.pphosted.com.
  • mxb-00028c01.gslb.pphosted.com.
TXT Records
  • wrike-verification=MTgxOTAxOTozNWJlNWRlMmI5YzQ5MTcwMmY2MjVhNTZiM2U4YzQ0OTU0ODQ1NzMwZDA1ODlkMWNmYTcyZjdmYjc0YjVjMTgw
  • xbg39j2h7r66jqyx2xk9jqszf5qfs6zw
  • nitro-verification-code=LTYwMjk2NzgwMDAxMTk5MzIwMzg=
  • apple-domain-verification=bFzpKqMi6IRKXfh2
  • logmein-verification-code=c56f55bf-9e05-49fa-a650-1ab958490557
  • google-site-verification=v2KcDI2ubEPkK0AW4aoVd2wkVZ6hdqGRTWe5H4iEp_g
  • atlassian-domain-verification=ib9fWh6tzN6tK06rNiJ3bEsAkBI7IKeNHtoJBXxNOkwBNUInwdneKZny6GSzDXPL
  • facebook-domain-verification=izqwr36dsd23gv85u33h719vcmz6c9
  • atlassian-domain-verification=XHT2BAt67oaGa7hkmMEVvpxtrD1Yv7nf1N5CMam3PUSHgKauYGDxtCjP4mBQwZv7
  • 00dj0000001ohpxeai
  • onetrust-domain-verification=c0562d62dc894620a91102858a8dc5a8
  • v=spf1 exists:%{i}._i.%{d}._d.espf.agari.com include:%{d}.dc.spf-protect.agari.com ~all
  • docusign=2f23f392-cd8e-4882-a7ee-8e20ead1602c
  • jbsysbqgcts3qkym0dgy0sz8l8p61cct
  • docusign=afb75fc3-0a7d-4fec-9597-7c77991914f7
  • E49ADD7A7120C13E988E28E20E3700983AE5322620ABEFC6D813D0F60E70C6CB
  • /SgndTo8t8rxf2GatjtQCYzp20Xm6gvjR77zjGaktPy7YQ4s7CMqVpf8sWM7RyqoTNLoNUKd0tgQov/dBOroyw==
Cloud / SaaS Services Detected
Apple Atlassian LogMeIn OneTrust DocuSign

Leak Screenshot:

Leak Screenshot