Leadway Assurance Company Limited
Leadway Assurance Company Limited
Group: alphv
Discovered by ransomware.live: 2023-07-26
Estimated attack date: 2023-04-15
Description:
Leadway Assurance Company Limited has been hacked. More than a thousand passports and more than 15 databases containing personal information about clients were stolen.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- mx2-eu1.ppe-hosted.com.
- mx1-eu1.ppe-hosted.com.
TXT Records
- cisco-ci-domain-verification=123ba66a67e5ac808875e61fbf44597a121f20c21529776e30a184f5ab328733
- google-site-verification=iawt99LbHliJVvDS1tw_gDQ3TnUFCw6MKVOdlgpIDSE
- google-site-verification=joyD6ZzhVCGN6cH9K8wgti2YCgdI-xT8XUU8A9Que7A
- ppe-1da57f0d1725e3586a68f557d2d34c6e9ec7be77
- v=spf1 include:_spf.smtp.com a:dispatch-eu.ppe-hosted.com include:spf.protection.outlook.com ip4:197.253.9.27 ip4:197.253.9.29 ip4:80.248.11.53/29 ip4:192.40.160.0/19 ip4:74.91.80.0/20 ip4:154.113.174.252/31 ip4:154.113.177.3 ip4:154.113.174.250 ip4:212.5" "4.131.11 ip4:154.113.4.93 ip4:51.104.254.104 include:spf.mandrillapp.com -all
- _jlvmydqou6psaj5zhsgjqyfy17qdcws
- apple-domain-verification=LvAkYHM0zMmJxQVJAgJmou1WWAC3V1Ro1ycgYuQzT7M
Cloud / SaaS Services Detected
Apple
Mandrill
Cisco
Proofpoint Essentials
Leak Screenshot:
