Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Cambian Group

Group: avoslocker

Discovered by ransomware.live: 2023-02-11

Estimated attack date: 2023-02-11

Description:

Includes data from Care Tech Holdings PLC (parent holding company, caretech-uk.com) & ByTheBridge.co.uk & Cambian Group. A billion dollar mega-corporation and British orphans, what could go wrong?


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • caretechuk-com02b.mail.protection.outlook.com.
TXT Records
  • MS=ms44518737
  • azQ+GtTWGfVJLolld3/aZtccjdUZ1mskFm3NPaW6ZPJ2nCGAPQ9x5jBfhxJH8Y5IK0Ct4i1Gurlstx+nhSYdAw==
  • C0A4R59901
  • apple-domain-verification=AuhPdVUWtNijkS6C
  • mh3lmdlnrm6hrip2l5k16tuuaf
  • v=spf1 include:spf.protection.outlook.com include:_spf.careshield.com ip4:217.158.88.115 ip4:213.212.96.93 ip4:94.229.167.37 ip4:213.143.144.20 ip4:89.187.86.17 ip4:37.128.132.100 ip4:78.31.108.198 ip4:94.229.167.29 ip4:80.6.91.150 include:servers.ebsnd.c" "om -all
Cloud / SaaS Services Detected
Apple Microsoft 365