Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo AUSENCO.COM

Group: Clop

Discovered by ransomware.live: 2025-10-27

Estimated attack date: 2025-10-27

Country: AU

Description:

[AI generated] Ausenco is a global engineering and consulting firm based in Australia. The company offers services in minerals and metals, process infrastructure, program management, and environment and sustainability sectors. Clients range from the mining, oil and gas, industrial and infrastructure industries. With more than 30 offices worldwide, they aim to innovate for better, sustainable solutions.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 6

Compromised Users: 73

Third Party Employee Credentials: 67

External Attack Surface: 28

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafety support.aws.com
  • 666d2c9c-086f-4644-8b32-60c24c89a42e identity-protect.org
MX Records
  • mxb-002ffc02.gslb.pphosted.com.
  • mxa-002ffc02.gslb.pphosted.com.
TXT Records
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • a7733916234e1f4759286105b81c8bed5274874a7c776e9f87
  • apple-domain-verification=Kk1lP9KdMPiSdRtL
  • atlassian-domain-verification=3a7raaELzH3QAg9mQkKoqk50GsaZR/akaVPIaxbAITOZl7carvGbc8driLCYCq4j
  • d365mktkey=MSweIdSK0NYE454AUHxNXRGAp8AlP0EEkGlKMqncfQUx
  • o5qv55b0dqpiesen3rfobn4vq2
  • solarwinds-service0desk-verification=5a3268284e9f6265111ebdc7a662b44c
  • solarwinds-service0desk-verification=a533e7adb56700f74f39c5c7ff32a138
  • spycloud-domain-verification=af17591b-589d-4a44-ac01-a165f6a40b37
  • tqninleu7tm2qdefh5o04cb8i8
Cloud / SaaS Services Detected
Apple Atlassian Proofpoint

Leak Screenshot:

Leak Screenshot