Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CIENA.COM

Group: clop

Discovered by ransomware.live: 2023-07-05

Estimated attack date: 2023-07-05

Description:

Ciena - A networking systems, services, and software company - Ciena


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • mxa-00103a01.gslb.pphosted.com.
  • mxb-00103a01.gslb.pphosted.com.
TXT Records
  • google-site-verification=VLSENC_H5WdRH3FiLrw8TYwQyPTME9OiRVYSXv3ZB8Y
  • miro-verification=1669f9fbb641794a54eddb964bd1fe572e89959c
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • teamviewer-sso-verification=61ea02c640864163bc1ccb0417f57d9
  • usqch22dsf9mqo3usk1uhepdno
  • google-site-verification=gKUI6nE1svDoLGrLnZpQx12GO8aU10V3ickyddP07ec
  • onx=acc7cce1-e346-43a9-aa3e-b0d3790e80eb
  • docusign=5402fee9-f101-4339-a528-2f0e3b31110e
  • infoblox-domain-mastery=ed29c12fa3ddeb8bce7bae6094091788c0031aca3d71be1e9dcec04b5b2632f313
  • apple-domain-verification=vGh8jITjJ4zt3pZJ
  • 1l8h50r0ar03pj4262e5e17sp5
  • jamf-site-verification=uJcrmFW71wLWEz_wYc9AOA
  • pi2l8gbo46pq9gimsmufenm2to
  • tcgfebo4v3tcf6th5p4s29otnp
  • facebook-domain-verification=weuo4ogu0ednspw2jf2lzhg0nd3bkt
  • google-site-verification=r2UE2Q_Uxav4hoZFycD3taE1VHMUGT1i4mtUWAf4WLc
  • cqoeopd83nfal74cb90k65s5v9
  • have-i-been-pwned-verification=4f541ce4ea82890d743890fafeb53ede
  • bmdvn6rb087411o007liq231qi
  • teamviewer-sso-verification=61ea02c640864163bc1ccb0417f57d9c
  • jjk48im75gpboae6n9adv11icg
  • e2uij44lfujjhn4247urgjihn7
  • anescuaiki1aui674biljr06uk
  • xsplit_verify=Qti33s53LiiirUrdfbZY82ZiGuxA0E0o6mhr
  • beam-verification=CNbFgqDHBNfCwF0JaIr8rJRtaoGaY1MAJUKfR4UNnB1SbTYP
  • amo4nk8p0uvphaqjdqb83vpt60
  • docker-verification=2c5f54c0-4d99-457b-aaec-c4983b4bcb1b
  • ilih7g25umror0hrtr0vqrangr
  • adobe-idp-site-verification=034210a15b8e70e227fdf3fe74f1c7f7781ba62892475a6977d4787a8b2c74c1
  • 4b1grbhu95p6iomj08h872fdea
  • hqhuok0mrhmga5ddkq2bnd3d8o
  • 0gaX5xW2K3xVp4C41otML+D6gpN6zQg+xW7k2wFPRB6bH0zGncLy3WN+Kpu6tAo/wQbVBWpNii24LLq06htSFQ==
  • WyCktZWFFzG6QxUO/kcr8AulftyTuZmSsFRrfmYIqmc=" "N4bBav0kbax3mFbfqcrBG21Zy2pIzDQ5uHezS0JdebA=" "3LZiTTLmTgNviJxvoU4hwJn1h8UPV0/3bTfFlSNXSKQ=
  • quebn8ukl9jqcnonoai7fqgp2i
  • ugk51nh7j8duktaegrrl8vgd9j
  • MS=ms97441882
  • teamviewer-sso-verification=0378d844c07b4a26ac6d3c920af89768
  • atlassian-domain-verification=RPsyuqOa19vjyzRBqf4i+0PK0yjbRTK/rieRabLpFh5hIjSt2UuqLCYYnnuhczWU
  • o3a2oj3hg2fkc84s14gjo907fg
Cloud / SaaS Services Detected
Adobe Apple Atlassian Microsoft 365 Miro Teamviewer JamF DocuSign Have I Been Pwned Proofpoint

Leak Screenshot:

Leak Screenshot