Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo BeneCare Dental Insurance

Group: hunters

Discovered by ransomware.live: 2024-04-03

Estimated attack date: 2024-04-03

Country: US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 0

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • d287329b.ess.barracudanetworks.com.
  • d287329a.ess.barracudanetworks.com.
TXT Records
  • duo_sso_verification=YBV6pfINoTD4dQl6W6SeyyKHtOAYRdp3eKjUj7IvExd47gmoNBrfip2eHwkpYWog
  • v=spf1 mx a a:mail.benecare.com include:spf.onice.io include:auth.msgapp.com include:spf.ess.barracudanetworks.com ip4:69.63.158.123 ip4:69.63.158.126 ip4:69.63.158.127 ip4:69.63.158.128 ip4:69.63.158.12" "9 ip4:69.63.158.142 ip4:69.63.158.143 ip4:69.63.158.159 ?all
Cloud / SaaS Services Detected
Cisco Duo

Leak Screenshot:

Leak Screenshot