Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

SYMRISE.COM

symrise.com

Group Clop
Discovered 2022-12-22 20:02 UTC
Est. attack date 2022-12-22

Description:

Symrise I Food & Beverage I Pet Food I Aqua Feed I Fragrance I Cosmetic Ingredients I Aroma Molecules - Symrise

Infostealer activity detected by HudsonRock

Compromised Employees: 22

Compromised Users: 31

Third Party Employee Credentials: 33


External Attack Surface: 23


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • symrise-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • hibp-verify=dweb_0muqhj7ic4xf5ynauehn6fch
  • _t428vvlftx9ss7igmihjj93khuwxa6r
  • google-site-verification=xCWNh0cgS38d70OPr_7chVzQeBP91wXPgCC67WH7DCo
  • _5ni6qmsdutj2bk9u1lq31gmxx6d8vah
  • google-site-verification=0DBvMazEQ0BCYA9PiRKudnBvBdOK5OUZoo9ZOMLu-BU
  • v=spf1 include:_u.symrise.com._spf.smart.ondmarc.com ~all
  • hzr6xzzwwq65v62z1zt0043z3kk3h9v3
  • _8th1gi1n6mfnjf9fwazjlqqi8oenebk
  • _bdm3v4gk3vimbjmb3lnm7frfxq1xa8z
  • google-site-verification=AH6Chy4doVc1-mCLcJI2XULderHAPRcTnVop4WqIj9I
  • MS=ms13027571
  • google-site-verification=ce4vKYInAOG2UN-F_u1qI7GN27Et8h_AEFaKc0nJ9JU
  • A918980346B0E5FABAF374D870CDAD7571A45C9BC706CCE277936E3BC8E8672E
  • _hc90deq5rtl95zuzvresp0sh8cwlkge
  • mongodb-site-verification=53OoHgt7pUd8DZ5IoiqMjscmSwtyZjIt
  • apple-domain-verification=peGLFsmX4CxsWMsg
  • MS=6996A4A64EA503B04BE98E1C8EC6B781C78E7324
  • firebase=symrise-scentfinder-gcp
  • 3NSZt2j9YKOWsBaP1aGz0351+iayTRn8t6UeVq/ujr0oaPIckyl/6FRCIMv5YfX8n7LfR9wZKDkk4iSd5f3pqA==
  • amazonses:9mwpxzDemg3vweOY4E8zqvweIfESglynsfUF+XTtgUg=
  • miro-verification=53b5a567c85385c627c971682bb7e734c9959128
  • _hm04vexm59gk1d6y60yn9lrzwvaa9d2
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365 Miro

Leak Screenshot:

Leak Screenshot