Interface
Interface
Group: hunters
Discovered by ransomware.live: 2024-04-03
Estimated attack date: 2024-04-03
Country:
Description:
Country : United States of America - Exfiltraded data : yes - Encrypted data : no
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 64
Third Party Employee Credentials: 11
External Attack Surface: 15
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mxa-00313303.gslb.pphosted.com.
- mxb-00313303.gslb.pphosted.com.
TXT Records
- DomainVerification=KF42P33XZYH8JOH5Z6NFY6QW29XIKYSSC47GC5D6JUCV1B8XPDKF553R8M2AV9F3
- duo_sso_verification=TLKwQZirky0HK4e3qRKQlJuHiaNLX3qGJaCzzjftV1Rwtbw0VsQ1CPt1277SSPf8
- atlassian-domain-verification=ZLUnvGaYToFQfXANZ1wBdOOrmfUs09wi8PshDj8U2mSssN6ZlWhaDIdZFmO02SVJ
- SFMC-YPAxz6sNEoTkS4vCXUodxQE8XKWp_UUbXUyfjGUY
- v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
- adobe-idp-site-verification=95f92e8d-05d3-4da0-8a48-b07e5d654a4d
- Sendinblue-code:aa6d6e34c6fbffdcc1366164e3fc470e
- google-site-verification=0NQXMkWCx5LZWN0MLtUm25sjdDqUGfSW3EijRSSgrSU
- intersight=761ee761d99cb0f32b6fd406eb26e33c823001d1ebbcc999bd7206ac9ac7e6e3
- MS=ms87042410
- duo_sso_verification=6aPHkCUpP9W2P1WM15oiqvxTA6raJjaueiq9xCmbROUb10NRL4MgIW9BrgkRmZSE
- google-site-verification=RpRCT3Ilb-6hTafXWv14VpePvhToAlSsmJZ4bxkdwkw
- _globalsign-domain-verification=pcDP_KPrM2lHXlR4GxnH-fJJep5IfIrc5-CnxiQrVh
- canva-site-verification=W2g2Sew8fwOT1YZ-j6b3Qw
- MS=ms10984482
- apple-domain-verification=AGH5izJCjmcB5abX
- docusign=869da2f6-8cd4-46d0-bdce-89d6b0afff16
Cloud / SaaS Services Detected
Adobe
Apple
Atlassian
Microsoft 365
Cisco Duo
DocuSign
Proofpoint
Leak Screenshot:
