Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo FINN

Group: dragonforce

Discovered by ransomware.live: 2024-12-17

Estimated attack date: 2024-12-14

Country: AU

Description:

FINN Corporation has a worldwide presence with more than 100 North American dealer and service locations, plus others in Australia, South America, Africa and Europe.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • finncorp-com.mail.protection.outlook.com.
TXT Records
  • MS=D028DF8A9A49DF4203241DA033A1CB52394029E5
  • MS=ms31223944
  • duo_sso_verification=YHF9rXxYuXDC8i6B3xdaWl9T2OXaS5FsUP0MGcCBXfs2JGJIar8YFnY1sPbDDwHe
  • google-site-verification=nq8LH70M7sZD0IFJcVU1T52G_hisSKAQ9kY6LPIMFas
  • infor-cloudsuite-domain-verification=U7YLMRYC9TF6KD7YHX8DGVYLTYNDWTFHK8AF3HREUNM5HK5UK8KZ2L4JUUJSBQNK
  • pardot591141=fa276bd4f525b78bccee87ccc78bb15586f7f519a76ccd850684375b04a0cb97
  • ppkey-821172289d8b4d949e003dc4ac3ab148
  • v=spf1 ip4:216.196.183.98 include:spf.protection.outlook.com include:aspmx.pardot.com ~all
Cloud / SaaS Services Detected
Microsoft 365 Salesforce Cisco Duo

Leak Screenshot:

Leak Screenshot