Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo TOTALWINE.COM

Group: clop

Discovered by ransomware.live: 2025-02-27

Estimated attack date: 2025-02-27

Country: US

Description:

[AI generated] Totalwine.com is the online portal for Total Wine & More, America's largest independent retailer of fine wine, spirits, and beer. Established in Delaware in 1991, the company offers an extensive assortment of products, knowledgeable staff, local and limited-production items, and competitive prices. Totalwine.com provides online shopping and in-store pickup, complete with product descriptions, ratings, and reviews.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1846

Third Party Employee Credentials: 6

External Attack Surface: 32


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxa-001ae701.gslb.pphosted.com.
  • mxb-001ae701.gslb.pphosted.com.
TXT Records
  • atlassian-domain-verification=gNApjhGJSJ82b6JICBcrdOPkPIAencN2NdC0OB5QNWzwjK7gjQltjDHQfsiAg90F
  • adobe-idp-site-verification=95831bdbbba59ed83ce72b7885c5abfe885e0d3632aaffabf46b3aff0b292aa5
  • google-site-verification=0Sr-yQS3u_ByXO5cwrUulSgSIg4BL9dQiRXxwjnU8PE
  • google-site-verification=QvzGMzP8aLemsJ8hoJIbxOtm5jinnjlTZByqLkKZx38
  • -2sSQkluobieWOWv-ptNsw
  • apple-domain-verification=FXcFufGw9qAWOBwB
  • facebook-domain-verification=m7b0d88ag5pz3qcjrunjlahe89g0bs
  • _globalsign-domain-verification=-dLoamn_W8k1SJs3XuoC2JQZYSqmsrjSq07J0B0nq9
  • google-site-verification=-_88yNplGm06KjkFth9AjTsJow9yqP0WMYebzF9kumI
  • ecostruxure-it-verification=e7b58979-b3f6-4dad-8ccc-bb40cc0c1b05
  • 0b231c9b26e640ffabaa11b8bcebd232
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • google-site-verification=2Zw24VFZNSwPVSWAsGD_yMRCWQaGmVVl24405Bjhh2o
  • 84XB9S9+Cu6cMCEKTRfIF8u5mL9j4JgxhrUfDAli5w1Id2i/D4ASe0Qb7eAf9RhsUuM8agAk+btk/OENxlZN1w==
  • miro-verification=221f1aa8fe9752e6da48c3a84ec0616d6cb30be8
  • google-site-verification=wJ0vC3yKQhfp2lOHM810oZYVLZV5GaIWK2jFHn3RzeQ
  • postman-domain-verification=cef45a890f49114ce628d8e6072ceb9e291918950e7ae1ec4efbf3b2d36b3adc8949797c0bde01d7b359c1eabddadc3ef6469520d8cb2bd42082861b927e9435
  • google-site-verification=4Ykh873oas_Plz1pu93HSf_8iHZ0dxG4W9Qn8e06ez4
  • _globalsign-domain-verification=GXpUUS49HB9rYWZEmxJFtZdS61weLMlf91w9Dn-5O0
  • bitrise-verification=9ce881ec58fc3304-s9kDuK6CNyg1
  • google-site-verification=Aib4hQbei1JolbIGCbjOYs0l2E9sJAGgYj6y8GPfvTQ
Cloud / SaaS Services Detected
Adobe Apple Atlassian Miro Proofpoint