Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo JDADELIVERS.COM

Group: clop

Discovered by ransomware.live: 2025-02-27

Estimated attack date: 2025-02-27

Country: US

Description:

[AI generated] JDADELIVERS.COM, also known as JDA, is a supply chain management software company that specializes in providing advanced solutions for retailers, manufacturers and logistics companies. Established in 1985, JDA offers a broad suite of services including inventory management, demand and fulfillment, warehouse management, and transportation logistics. Their innovative technology and expert services enable businesses to streamline operations, improve profitability and achieve sustainable growth.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 8

Compromised Users: 333

Third Party Employee Credentials: 0

External Attack Surface: 108


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • kcprsmtp.jdadelivers.com.
  • dlprsmtp.jdadelivers.com.
  • sl1prsmtp1.jdadelivers.com.
  • sl1prsmtp2.jdadelivers.com.
  • fr1prsmtp1.jdadelivers.com.
  • fr1prsmtp2.jdadelivers.com.
  • mailout.jdadelivers.com.
TXT Records
  • MS=ms30386808
  • MS=ms63488260
  • confluent-verification=7defa9de-929e-4e4e-9da8-1d7ce3c5f6a9
  • mongodb-site-verification=MGVPrYKoYnntViSPaDk6DWcqlJpEqy7F
  • mongodb-site-verification=lWvdlD59opsELu7KrOCI1EPnOP9VP4ZD
  • pendo-domain-verification=oMdI7EBtp2340QcjEdILbzdqnJQ
  • rovag_verification_token=7FA07A7808D247688ADD234734F08C48
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
  • @
Cloud / SaaS Services Detected
Microsoft 365 Proofpoint