Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Kingsmill Resort

Group: qilin

Discovered by ransomware.live: 2024-09-12

Estimated attack date: 2024-08-31

Country: US

Description:

Welcome to Kingsmill Resort! Beautifully located on the banks of America’s “founding river” and nestled into the quaint luxury of southern Virginia, Kingsmill is where your next great adventure begins. Experience the thrill of our three ...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • us-smtp-inbound-2.mimecast.com.
TXT Records
  • brevo-code:a7e572f28e90f42f7d528dea20b3059a
  • sophos-domain-verification=aaa5f6fe7beee7a00ebb699dd042b6b9ab49bd56
  • facebook-domain-verification=utl3s4k71t2mgi8ahhmt4x6n1wf3ty
  • MS=ms93387257
  • duo_sso_verification=KaYbjfGhed8DlYM5S3NzeDYk6MOo291VaTtVBs4BMrFZmUlE4ogt3vUUoKlxNTLh
  • 0ed1fe018ab67067d4c3d24afb89e833a03953f9e4
  • pardot1043953=3ae9793ab8d97869078e2dda958ba4cf15a297fea2b468b71ae994c50e76b60f
  • sending_domain1043953=54b43da8cbda7bdb702095af493ffbaf4d18ff71cc82c82239ab6391d1ad87fc
  • v=spf1 include:us._netblocks.mimecast.com include:_spf.smtp.com include:aspmx.pardot.com include:spf.hostedrt.com include:_spf.salesforce.com ~all
Cloud / SaaS Services Detected
Microsoft 365 Salesforce Cisco Duo Mimecast Sophos

Leak Screenshot:

Leak Screenshot