Kingsmill Resort
Kingsmill Resort
Group: Qilin
Discovered by ransomware.live: 2024-09-12
Estimated attack date: 2024-08-31
Country:
Description:
Welcome to Kingsmill Resort! Beautifully located on the banks of America’s “founding river” and nestled into the quaint luxury of southern Virginia, Kingsmill is where your next great adventure begins. Experience the thrill of our three ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- us-smtp-inbound-2.mimecast.com.
TXT Records
- sophos-domain-verification=aaa5f6fe7beee7a00ebb699dd042b6b9ab49bd56
- facebook-domain-verification=utl3s4k71t2mgi8ahhmt4x6n1wf3ty
- MS=ms93387257
- duo_sso_verification=KaYbjfGhed8DlYM5S3NzeDYk6MOo291VaTtVBs4BMrFZmUlE4ogt3vUUoKlxNTLh
- 0ed1fe018ab67067d4c3d24afb89e833a03953f9e4
- pardot1043953=3ae9793ab8d97869078e2dda958ba4cf15a297fea2b468b71ae994c50e76b60f
- sending_domain1043953=54b43da8cbda7bdb702095af493ffbaf4d18ff71cc82c82239ab6391d1ad87fc
- v=spf1 include:us._netblocks.mimecast.com include:_spf.smtp.com include:aspmx.pardot.com include:spf.hostedrt.com include:_spf.salesforce.com ~all
- brevo-code:a7e572f28e90f42f7d528dea20b3059a
Cloud / SaaS Services Detected
Microsoft 365
Salesforce
Cisco Duo
Mimecast
Sophos
Leak Screenshot:
