Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Pittsburgh’s Trusted Orthopaedic Surgeons

Group: Donutleaks

Discovered by ransomware.live: 2024-05-17

Estimated attack date: 2024-05-14

Country: US

Description:

Hello everyone! We got some not very smart people who was compromise and do not want to protect their clients data. Today here medical company from Pittsburgh(USA):"Pittsburgh’s Trusted Orthopaedic Surgeons" [must be not so trusted as you thought, but okay] Web site: https://www.gpoa.com/ "Pittsburgh’…


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse enom.com
MX Records
  • gpoa-com.mx1.arsmtp.com.
  • gpoa-com.mx2.arsmtp.com.
TXT Records
  • MS=ms58945300
  • v=spf1 include:spf.protection.outlook.com -all
  • facebook-domain-verification=vbs54o0d3po1qy6ilh7dx8y9b3bws2
  • q8sccy7wbbxw6h08kxtwvt2kxq30l4nj
  • gpoa-com.mail.protection.outlook.com.
  • facebook-domain-verification=25hb5wuabmzjvha9audahmbb52pxrg
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot