Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo DiVal Safety Equipment, Inc.

Group: hunters

Discovered by ransomware.live: 2024-03-04

Estimated attack date: 2024-03-04

Country: US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • gw16210.fortimail.com.
TXT Records
  • MS=ms69835763
  • lbc341mikl5v1m61ehuecccm5k
  • MS=9D256638635F4CCD41F67313B303664920F8CC5F
  • MS=ms67975985
  • MS=ms97762996
  • Oce8Vfo+B5rmRqKCjBXIjUuZz73+Ig1/rNcDV1mg9B33F8DiagbSHeozsjDZlZoUTIm/5Hh7j4vmJyyE+MXLnQ==
  • v=spf1 include:_spf.divalsafety_com._d.easydmarc.pro -all
  • MS=939F71B48A2BA4799E9F2025280E6E5579CE1FE9
  • juottdi8ch95hsqlla6c939ck3
  • 8tbf7jus64isf2c58ffalmv4ip
  • duo_sso_verification=uEguJyJ13Ua1gSXDCJDJcWgzmButS3ue7XgFKCYozeU9XRHobqjtbXdq0MKdRkuU
Cloud / SaaS Services Detected
Microsoft 365 Cisco Duo

Leak Screenshot:

Leak Screenshot