Reynolds & Reynolds
Reynolds & Reynolds
Group: Pear
Discovered by ransomware.live: 2025-09-14
Estimated attack date: 2025-09-02
Country:
Description:
Leading provider of automotive retailing solutions that help manage and improve dealership
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 12
Compromised Users: 34
Third Party Employee Credentials: 12
External Attack Surface: 37
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- eml2-img01-day.reyrey.com.
- eml2-img02-day.reyrey.com.
- eml2-img03-day.reyrey.com.
TXT Records
- apple-domain-verification=rybJp8UiBeGCCLi1
- knowbe4-site-verification=a3b6c1bae3dd63c91dac9fd2630e3ccb
- asv=9cdbf52bd1320b842159e8dad50d21df
- google-site-verification=iKnbo976bJc0PlxQcqj01Wm9PUOQzF9sAk7kRgStuto
- google-site-verification=s0IQQZ8EoBagp9uT6t9vdXj5QCQ9yd2msXXNvefDBuc
- google-site-verification=92ho-s7-it3PB7regBg0JAMv_jovmlGpyoOvvziBDxQ
- cisco-ci-domain-verification=886b8b821ef2328ff99710e0e0f8d2bc0532525a4ade4dd8b494e07fefacc6c
- MS=ms67406667
- pjbaqm2r82rtb7qeqek32kjqdf
- atlassian-domain-verification=gG9mdbPJRdEaZxWxrPXW+KHFdUv05mdRLB1HdP4ZGXSWpBcZbRULGiopQUt5PweW
- v=spf1 include:spf.protection.outlook.com ip4:206.180.0.0/18 ip4:205.157.192.0/18 ip4:82.133.16.0/27 ip4:185.50.152.0/23 ip4:185" ".92.37.57 ip4:52.14.68.115 ip4:34.199.42.231 include:6975698.spf06.hubspotemail.net include:spf.nl2go.com include:spf.sabre.com " "-all
- 49vhqk268hoi1efnvvcjog1u8r
- figma-domain-verification=c65f5d6c59c4b2a2d1ba5509b2922157524f4a59e81f6a607f8bb5cf621fcd57-1752783759
Cloud / SaaS Services Detected
Apple
Atlassian
HubSpot
Microsoft 365
KnowBe4
Cisco
Leak Screenshot:
