ACLARA.COM
ACLARA.COM
Group: clop
Discovered by ransomware.live: 2023-07-26
Estimated attack date: 2023-07-26
Description:
Aclara Technologies LLC
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 1
Compromised Users: 0
Third Party Employee Credentials: 0
External Attack Surface: 3
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- whoisrequest markmonitor.com
MX Records
- mxb-00126502.gslb.pphosted.com.
- mxa-00126502.gslb.pphosted.com.
TXT Records
- v=spf1 ip4:207.10.34.2 ip4:207.54.154.128/25 include:amazonses.com include:et._spf.pardot.com include:spf1.satmetrix.com include:marketing-spf.aclara.com include:spfdefault.hubbell.com include:_spf.qualtrics.com include:_spf.salesforce.com -all
- amazonses:7Xnu1Ror307xelrRMtdJ35xp/FZPI/ioQVkxbyQuK2g=
- CnLOPJvRHemZMgRsgofJWBLiZbV/Q8Rvs8hayIKszduuA1mZ39T/gIwAZXvdj2nC+YhsjMwhsojLpAlLoHWIfg==
- google-site-verification=7O_34xsZR3zWeyuKH13kKcEcwj8Cg4ctbv5EP09rexQ
- atlassian-domain-verification=F5vuIeDrjpbz2KLEDPWCVx5W42XK45ljbgnVVgchVql7zZl4gelANy5mwU5/kWd2
- rovag_verification_token=6BD9D7FDF21C45CCADC373B631978562
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Salesforce
Leak Screenshot:
