Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Pandora.net

Group: Shinyhunters

Discovered by ransomware.live: 2025-10-03

Estimated attack date: 2025-06-30

Country: DK

Description:

[AI generated] Pandora.net is the official website of Pandora A/S, a company based in Denmark. It specializes in the design, manufacturing, and selling of high-quality hand-finished jewelry. Pandora's product range includes bracelets, charms, rings, earrings, and necklaces, among others. Its jewelry combines traditional crafting techniques with modern technology. They target customers seeking affordable luxury jewelry.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 47

Compromised Users: 18752

Third Party Employee Credentials: 113

External Attack Surface: 114

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • pandora-net.mail.protection.outlook.com.
TXT Records
  • _globalsign-domain-verification=fu7OAldduP5OnsUf-nO8iOMdu0rwmpB7fYSTTVINj1
  • MS=ms37592040
  • new-relic-domain-verification=818b3db3762f48ceb1a154b4b46ab8e8
  • JqIS++vwA+/paYdBSD5hbvSVSoSfnZPX1ell7Jl51nqjLpmQu5nNPQNXX4YLq1cDXEMG0JU7St4EPA9PrL/jYg==
  • iVOp0BPgwySP9gJtPdcvTOk01qLgkCvoNS3nPmkgCx8=
  • j1AvX/3mga2BE8a9hnFCRUVopW16btjIMmpUfdlYmTI=
  • cisco-ci-domain-verification=774751383870e4856fe507ba54ed0c882621ba6a61e6e926378340f1abd54ced
  • docusign=e6fd72cc-36b6-44cb-9e23-d0a2ac1e00d6
  • apple-domain-verification=XF4p6UQUUSeE2mLj
  • dtm-domain-verification=_aX2G5Oq8wTeu5F_oM05e7BDPfOnQuj7PB8Zw4YYtHY
  • teamviewer-sso-verification=1784c74034ca475dbb367bf62dfa0f59
  • dyjhz7jsr6vw7wjqzdb66153v6hmv2dz
  • google-site-verification=ktLZ53MTJy8l2Ib65aWcFxwOmMUgjVO_ELc0l-0rRGs
  • v=spf1 include:spf.protection.outlook.com include:sendgrid.net include:successfactors.eu include:_spf.salesforce.com include:amazonses.com include:spf.kligerweiss.net include:_spf.psm.knowbe4.com include:spfa.pandora.net exists:%{h}._spf.pandora.net -all
  • aliyun-site-verification=8a42bde6-2d47-4e5e-85be-b03fa886652b
  • _globalsign-domain-verification=hRVAkAr6SGNSxO_6cf36L7Gy7GqJU1FemG_R35jsQK
  • facebook-domain-verification=dja94byjnb894041ddbizriabhf9qp
  • Fmd8G8SWUiJ3t750o8eAaRLvGtG4ZQ4wxsZAFxR7fCU=
  • google-site-verification=OezTzvZ1akFDMIoVNXWM18sTsD8IR70XPUqfYDYAgLQ
  • amazonses:8/lqelnkm4gA6qFdA2rnVxnf3JJCHFVZ1Tkzz/IQrDg=
  • miro-verification=54928ef4488367e661fabac5edc4361a0bd70db5
  • autodesk-domain-verification=l0tEUPaC_Quom3SgzmmH
  • ivwF0Om8prg3dE7/cKUvodwJisVV5UBHHe/qzQoGvRc=
  • _globalsign-domain-verification=Z4XmD88wCmwfZ46W0E9urhowpWfbCudC5nIFoKg4ex
  • atlassian-domain-verification=+zmPwzamzB+04Gtafuq1k2Ay+D5sX9dO0NXkfyrN9MxG+NDa2H6r9JdP9qLKm4Xw
  • cloudControl-verification: c648035c209e29bdf73a899014460e271b7aa18c0711c03b6070a6206858cd59
  • g7qvrr1tqk282ch1rd4z9msg59skfs21
Cloud / SaaS Services Detected
Apple Atlassian Amazon SES/WorkMail Microsoft 365 Salesforce Miro Teamviewer Autodesk KnowBe4 Cisco SendGrid DocuSign

Leak Screenshot:

Leak Screenshot