TDAMERITRADE.COM
TDAMERITRADE.COM
Group: clop
Discovered by ransomware.live: 2023-07-07
Estimated attack date: 2023-07-07
Description:
Online Stock Trading, Investing, Brokerage - TD Ameritrade
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- whoisrequest markmonitor.com
MX Records
- mxb-00096901.gslb.pphosted.com.
- mxa-00096901.gslb.pphosted.com.
TXT Records
- MS=ms38867415
- google-site-verification=qe5DGoQRaqkNf1jW7Gt9AD6JFSKMQ5D8Okbh0WAoBD8
- ciscocidomainverification=4a588db1306b01495871b78ba2a8713a975d32f5b74871884f57d34d27392366
- google-site-verification=F9OY8OV3sDs7loOpJBAR-pgCwVzqj0LqtB85iuN7rUM
- MS=ms62033968
- google-site-verification=ReAnzcDwxJAmMFO35KqH_odwvtD7fhWMvTfdiOaLBMw
- b9ekca851ufp0s0003t8n2n0hh
- atlassian-domain-verification=ZHRKGKyZJRuRzLmc1H4VuEQtywf9cveuTWcq9IT+H6rxYeEBlkiawX2TTWPpUEew
- adobe-idp-site-verification=cb6ce8c3b7df0d8612dab90512d7a1e1bdc2f584781b74b845cd316fedb179d8
- facebook-domain-verification=chr9o3z2hpucsscmg7tx3xdi4vgyqp
- google-site-verification=1gMNFrSDP-MoeZCxdXq2GSWkF1U3QJxC8RP10lxwc3s
- traction-guest=6eee7b69-513a-456e-916a-3719976f870e
- _t4kpco8n50d6omubuczcs1dc2ewu6ds
- OpY5S7ziLyFnCOwH6KN1mczSHWMQu6qzH5It0F0egIOunCLtJPMsNUgOAD3sO6VWVyY+MqHyxul5QUMMBiaaCQ==
- onetrust-domain-verification=4270753fdb5a4d5a9ef00bae89f89735
- webexdomainverification.4C675B8B605CB136E053AB06FC0A3F65=08b7de1a-c403-49a7-8ef6-ca3ba6f847a8
- v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
Cloud / SaaS Services Detected
Adobe
Atlassian
Microsoft 365
OneTrust
Proofpoint
Cisco Webex
Leak Screenshot:
