FERRING.COM
FERRING.COM
Group: clop
Discovered by ransomware.live: 2023-07-26
Estimated attack date: 2023-07-26
Description:
403 Forbidden
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse comlaude.com
- ferring.com-Registrant anonymised.email
- ferring.com-Admin anonymised.email
- ferring.com-Tech anonymised.email
MX Records
- ferring-com.mail.protection.outlook.com.
TXT Records
- apple-domain-verification=WeBnEsZzCQrl8iWd
- v=spf1 include:spf.protection.outlook.com include:_spf.salesforce.com include:amazonses.com include:spf.mailjet.com include:emsd1.com include:servers.mcsv.net include:imshealth.mail.e.sparkpost.com include:spf01.ferring.com -all
- google-site-verification=9nqnwtaEXsmo214dAntSVd7YVUaHWvvtD33VHgluzTA
- cisco-ci-domain-verification=18beced16e1eaa10bba7bec6a7f07ff3e7f555f9678856907c8f84cd15cb2bc5
- tdqlfp6v6ddm9tpljwfv5w1sbv4tkl16
- MS=ms31156488
- cisco-ci-domain-verification=29a205dfe9409b97b1310e278fb048e3b8bf5b1c0e02cbb10c0361c2142bf365
- have-i-been-pwned-verification=dweb_cpb5hkdgfj452ed37ifeeps3
- K9fBANu4PJ0elXqaqII8gq7eYYesQpn3VzIT1PEp0HM1zH+sorZS53HVo3iC9XltRLhrwzbpQNkLPoLuooJbfA==
- adobe-sign-verification=fe83651d96e78e4eb829c16324ad4606
- pro-fercor.azurewebsites.net
- f5ypx09t3fpb0nw78bsj55wwc4lgw2yd
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Microsoft 365
Salesforce
Cisco
Mailjet
Have I Been Pwned
Leak Screenshot:
