Rumpke Consolidated Companies
Rumpke Consolidated Companies
Group: hunters
Discovered by ransomware.live: 2024-10-11
Estimated attack date: 2024-07-28
Country:
Description:
Country : United States of America - Exfiltraded data : yes - Encrypted data : no
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 13
Third Party Employee Credentials: 12
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- rumpke-com.mail.protection.outlook.com.
TXT Records
- v=spf1 mx a ip4:216.68.80.119 ip4:216.68.80.120 ip4:216.68.80.99 ip4:208.86.168.7 ip4:216.68.80.100 ip4:54.197.168.137 ip4:209.66.117.25 ip4:205.216.45.25 ip4:205.216.45.11 ip4:209.112.4.210 ip4:72.14.161.210 ip4:64.124.236.130 ip4:4.34.179.18 include:sp" "f.protection.outlook.com include:_spf.kubra.com include:whitelabel.kubra.com -all
- MS=ms14834562
- amazonses:MXwIYJHSP/Qc7jX03BGyA/ZqPme3Pi9Nre4+jJ6J9cY=
- docusign=3d9dfdd5-0aca-47c7-8f66-88de39fc55b0
- b54s8n92hk27mglpskwpnqsg8rw4ph7k
Cloud / SaaS Services Detected
Amazon SES/WorkMail
Microsoft 365
DocuSign
Leak Screenshot:
