EY.COM
EY.COM
Group: clop
Discovered by ransomware.live: 2023-06-23
Estimated attack date: 2023-06-23
Description:
EY US - Home - Building a better working world
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse safenames.net
- cdhabccrjzqa idp.email
- hostmaster safenames.net
MX Records
- mx2.hc4518-41.iphmx.com.
- mx2.hc497-45.ca.iphmx.com.
- mx1.hc497-45.ca.iphmx.com.
- mx1.hc4518-41.iphmx.com.
TXT Records
- browserstack-domain-verification=210c6ad2-13b5-4bb9-9e80-01231d0d524b
- google-site-verification=pA5sXOE5vuWCzkghdlA1bZApppt7V_Bicz9LeJtNXEI
- docusign=d8aadd18-ba88-48a6-b430-c8035d990a55
- atlassian-domain-verification=taexKeOqyH4eabXLOnocS/798edhDOnaxCF7Og63/PVyYPyf///AoPZIdbDRXfS7
- 74j3VvfS2110UkObDZAY
- SFMC-3kcpOVF5pFXqvVWA6pvs8wiGKbReQR9o776sNltR
- atlassian-domain-verification=RMR0Lc76sETwQZnNXrMviQYR25KDf5KY1/kqtafkNgW5vuBPN0KjO5iJDKX0ECvp
- cisco-ci-domain-verification=6de4aeefa142909ce960a8166d65a158e2afe01d249e2a71c0975378869ee4c
- cjm6ht8ll92lfrv2hlgvsdolig
- docker-verification=3a445dcc-d2a5-42d0-999c-012dccf86048
- fastly-domain-delegation-bXQcsyeSTyfp4jad-00397362-2025-05-05
- v=spf1 exists:%{i}._i.%{d}._d.espf.agari-dns.net include:%{d}.da.spf-protect.agari-dns.net ~all
- ouddeo8ncn3gp5294bl4ripmpc
- _globalsign-domain-verification=axam_yX2CESbvMzYPV-vtEtdxuzr51AArot2dD0UuS
- docusign=6b01fa2d-5969-442c-ba7b-1d283ce469ce
- pendo-domain-verification=7c015e1a-6736-4735-9f04-ec6ebec113c0
- _globalsign-domain-verification=QRsUPMvMuflsnhkeuePRXDDJAtR4K5_yYB9MwfrUKN
- postman-domain-verification=2213fff4e24f70d4e91ba46cd60ed8185591e7ae55b5e55aecb62d346bc94b36
- _globalsign-domain-verification=w79G9w4s_ydP5fjdIRrUiCPZhiZ5dVbfIsGbNT2Ei3
- apple-domain-verification=5eGcHCI6vSqqmonz
- apple-domain-verification=gXSOeETm9rYNujNF
- openai-domain-verification=dv-Shd0M7TuyMgS2F3kBnGQcpT3
Cloud / SaaS Services Detected
Apple
Atlassian
Cisco
DocuSign
Leak Screenshot:
