Partners Air
Partners Air
Group: arcusmedia
Discovered by ransomware.live: 2024-09-24
Estimated attack date: 2024-09-24
Country:
Description:
Partners Air is a company that...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 1
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- legalservices eurodns.com
- it airpartner.com
MX Records
- airpartner-com.mail.protection.outlook.com.
TXT Records
- access-domain-verification=5662875220cf237e9897b44b323102544b6361526059c4ae8b152fc765964e48
- airtable-verification=d1db30a86fc12e40f5a4419267a4deb5
- google-site-verification=BpUtIewOd7cyCVcE7AO_1YyYt6iNC0-_FR8eMF7WEfw
- asiHGlBkJllDv/mV/3Xsp2QVvdz5DreZcovVQfNxpBksuincxPZnnFmXhqQXUCvZbSFYhb9HzfrX+cA3gmAecg==
- docusign=1e6707de-b7c7-4033-8693-1fe440a64214
- lhmu7md5qmvv7hu566sunf7ipc
- apple-domain-verification=ZajlgaxjLeeX0zYs
- MS=ms55521644
- msfpkey=4yj05ezb6orbq3dhjvwsb3rsb
- 8espln4vg7jp1fg8oj5eo8ipdq
- es3sfvttcl0o6n9fttqi3uen5c
- v=spf1 include:spf.protection.outlook.com include:authsmtp.com include:spf.uk.exclaimer.net include:marketing.dynamics.com include:spfa.cpmails.com include:spf.brevo.com a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com ip4:82.165.14" "5.109 ip4:81.144.204.196 ~all
- d365mktkey=nS6cmnm9laU6rcOv1xnv3WC4uaTT6qyoJaaliXmtiFAx
- amazonses:uq125IETHU2/q+VZI8NVPAxUVAnNd+JB2Fbtnkw3Hug=
- brevo-code:195aa7d5e71961d52afe0e8f835db6b0
- f627m9o6ffev8qpjp6vv17ts4a
- as=1632236992
- msfpkey=321zwekxlam12sn3ui2586v1f
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Microsoft 365
DocuSign
ServiceNow
Leak Screenshot:
