Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Southwest Traders

Group: Blacksuit

Discovered by ransomware.live: 2024-08-31

Estimated attack date: 2024-07-07

Country: US

Description:

Download link >>

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • southwesttraders-com.mail.protection.outlook.com.
TXT Records
  • cc4562feafaf92e8e74c504118f37dd2
  • atlassian-domain-verification=FNTdLgS4aRPArBjX8vB66hSC7XkswYMCZGwPvWjFhBOLUnnmKkfzAlj/MmAQIauY
  • 82d3133f50ad65d7c5c1162dee2068f9
  • MS=5F9928877104CB22AE59AAEC7781F298421C3D21
  • v=spf1 include:spf.protection.outlook.com include:sendgrid.net ip4:198.136.43.250 ip4:64.132.201.93/32 ip4:74.203.211.13/32 ip4:207.67.44.189/32 ~all
  • duo_sso_verification=k4oF7Z5prVR1oizQrsulOgjaYZqfOLW0RaOV6LXcJwwdoLY0mGtVPdbwTQ7OhRKl
Cloud / SaaS Services Detected
Atlassian SendGrid Cisco Duo

Leak Screenshot:

Leak Screenshot