Benefit Management
webpayee.com
Description:
As a result of our hack attack the network has been encrypted and over 250GB of sensitive data were stolen from Benefit Management. Those data includes few employee's records , and Client's full records of Employee Benefits Plans , Qualified Retirement Plans and Wealth Management and another sensitive info.We have faced complete indifference from their negotiator after receiving and reading our messages and come with slow answering.At this point , Top management of Benefit Management headed by president Troy Shreve refused to contact us and protect data of their client's and employeesAnyway we are giving another chance to Benefit Management to contact us until October 30th and protect data of their Client's records and employees.After October 30th your Client's records to be sold
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations@web.com
MX Records
- webpayee-com.mail.protection.outlook.com.
TXT Records
- zendeskverification.webpayee.com
- MS=ms69365664
- v=spf1 mx ip4:66.104.254.208/28 ip4:23.24.223.80/29 include:spf.protection.outlook.com include:mail.zendesk.com ~all
Cloud / SaaS Services Detected
Microsoft 365
Zendesk
Leak Screenshot:
Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.