LeClair Group
LeClair Group
Group: Alphv
Discovered by ransomware.live: 2024-01-31
Estimated attack date: 2023-12-13
Country:
Description:
6701 Upper Afton Rd, Saint Paul, Minnesota, 551... Phone Number(877) 532-5247 LeClair Group is an insurance brokerage general agency dedicated to supporting the growth and success of the independent insur
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- leclairgroup.com.2.0001.arsmtp.com.
- leclairgroup.com.1.0001.arsmtp.com.
TXT Records
- pardot_166582_*=604b68e174a0e2d846a84f816900aa2a64fa6dc612230f0a67063f741f11eb81
- google-site-verification=Ux5_dzsVyuE069MwmlitykQBL3TWn5ddCFbH3Q3YE60
- 7MO5UO+n7psyL8JGPq/sjA==
- citrix-verification-code=5e69bb16-9b34-4f9b-bf72-b439f68839b8
- v=verifydomain MS=9675740
- linkedin-site-verification=f4463400-2bae-438b-8423-3e3e7a163c9c
- duo_sso_verification=ny6Dcpfk57nRa5uaeAyqXmBwKCl9ek2w1j7jDv1F0SqvG1kFWBQGq3JTj6EQW91b
- 95js9v24n7oq2cjknkas0u8aro
- uunt7j8vr7jiha7tpspjk3hkmm
- v=spf1 include:spf.protection.outlook.com include:spf.edgepilot.com include:leclairgroup-com.spf.smtp25.com ip4:132.148.157.150/32 ip4:64.244.48.0/20 ip4:71.5.104.0/21 ip4:69.67.16.0/20 ip4:199.66.72.0/22 include:aspmx.pardot.com ip4:67.127.64.232/29 incl" "ude:6595700.spf04.hubspotemail.net ~all
- pardot_166582_*=d04b12d5def79dcf77865504648eb6d90eb2fdc323de7540544301769a0bc4d1
Cloud / SaaS Services Detected
HubSpot
Microsoft 365
Cisco Duo
Leak Screenshot:
