Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Litchfield Cavo LLP

Group: akira

Discovered by ransomware.live: 2025-08-13

Estimated attack date: 2025-08-13

Country: US

Description:

Litchfield Cavo LLP is a premier coverage and litigation defense law firm founded in 1998 on one principal - client service comes first. We are ready to upload more than 300GB files of essential corpor ate documents such as: financial data (audit, payment details,fin ancial reports, invoices), employees and customers information (d river's license, Social Security Numbers, death certificate, medi cal information ) confidential information, NDA and so on. A lot of personal files and customer data,also you will find a lot of court documents such as police reports, hearings and so on.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 2

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxb-00298401.gslb.pphosted.com.
TXT Records
  • lf6tqfba03pergut5ofgbslrus
  • GvWjCD6s366gIvnxhULTAVLjNZp9ynJi7dCbyd/5/fAJ5vMxC1gV+QC5XZLw+Cv+EzcUfGpOBKZuIQE4Q3GZFg==
  • RI5MjrH6gUkEzYEAfVwc9MtUYtQDk7zjZrumfoRaXKoy92YWXtLWEreaekxV7f9Sae0uiL56vqGGSHISeWqLGQ==
  • 2n3oaqng8eu4su24i76st1td1h
  • MS=A129C0548514B997DBF428F9E8B9AB6D6F7251A5
  • MS=ms90699993
  • pmg5c5tcjdt5158k6ga5n16hf8
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • b6ev2bfmgalgpo2rdgu24makng
  • ZOOM_verify_Z246-OSDS12gEKLuhxFh6w
Cloud / SaaS Services Detected
Microsoft 365 Proofpoint Zoom