Gaia Herbs
Gaia Herbs
Group: blacksuit
Discovered by ransomware.live: 2024-04-02
Estimated attack date: 2024-04-02
Country:
Description:
Gaia Herbs manufacture certified organic grower and nationally-branded herbal extracts based medicinals.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 10
Third Party Employee Credentials: 0
External Attack Surface: 2
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- gaiaherbs-com.mail.eo.outlook.com.
TXT Records
- mcamn76tvul0shb5hrnc7alonk
- v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com ip4:198.37.147.129 ip4:35.203.94.235 ip4:35.203.3.51 ip4:87.253.232.0/21 ip4:185.189.236.0/22 ip4:185.211.120.0/22 ip4:185.250.236.0/22 ip4:68.235.248.18 ip4:64.147.217.90 include:sendgrid" ".net include:mailgun." "org ~all
- 7ucj29f68mj2flv54vtpvofdm0
- MS=C6D79D16B6BB6E903EC6CC01998114A474552984
- _aeu74hvrc3iy26gr0vatlkfib4fevh4
- facebook-domain-verification=qfeljw6whoevttn9yi5zyzx4n3nqpy
- google-site-verification=ERvfVeom_VGoFLWeaWowemyfm-7nc0cfHD2yUNz9RUI
- google-site-verification=LWoBI87YNvUiz1SaMePat43bG1MKapMkoP4yzF9Eiz8
- google-site-verification=RYCSPCTUd_BISAaRoyrZexnupeFi6f8LUguXyt7X_No
- google-site-verification=Vi85nqyl9vTGEKPmxIr50ZypFMZaYNwnpye7VYiSgbc
- google-site-verification=iSUlMslQkhBwflwrDGRcx7ClJpONENm8P3s0g6f6kRo
- gv5WucjlhqpYgLtQiDtxdj8hXz8KT65eNn6/bC94tho1C6eTaXtWKCBsqI0ywZFlHqJ1pDGh/IOH9FeFnJuLSg==
- klaviyo-site-verification=PqM29e
- klaviyo-site-verification=Vyh5Xw
Cloud / SaaS Services Detected
Zendesk
Leak Screenshot:
