TDECU.ORG
TDECU.ORG
Group: clop
Discovered by ransomware.live: 2023-07-05
Estimated attack date: 2023-07-05
Description:
TDECU - Your Texas Credit Union With Digital Banking
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 171
Third Party Employee Credentials: 0
External Attack Surface: 33
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- tdecu-org.mail.protection.outlook.com.
TXT Records
- SFMC-qK0eu_NHt5i-s7fAPMgsL2qAF-ChI53f_QrwRX8Z
- d365mktkey=Gpo2Hqi1FkxUDxKqH5QGo4tU8U5hvUKWF9oPmlxLVxsx
- 5a6a9a00e4aa44ed890346f2fd098349
- proxy-ssl.webflow.com
- mandrill_verify.ysuTt5HHNOhKFTgOqI7TXg
- d365mktkey=gWd9FeQYGgKGXZUhs8L3ek8Vxrc8DnRUaa9sc6l6kwQx
- QzknPjqsImhepGeZZ1ySL1JmDZ/Bv5d/0/LvVFAw56U8K3Cb6SMKnPJIGgdvTjAUGgiyPNxf+Bn5MsaRMG43rw==
- atlassian-domain-verification=odlqK8dHKbSia9O763T8XH9uIben8XGTE1qXtCP/A/B63roajfZD4YkbErVRjiIi
- asv=879c1c2d26ae1ac370c2c8340f06069f
- client_spf.fivision.com
- citrix.mobile.ads.otp=f5e3x9lcsynrokt6zpibp8g
- dd1f5e1c501e4536a9c2776c92e24ec7
- smartsheet-site-validation=sFXN9ywiTD_etraNfGGRo1MiZeKEJUwd
- hj-ownership=nI7FY96uFZMY
- d365mktkey=4w2QqwjucwT3jLoFgb8fe0ysURMvQxiloCdCDGUOvSEx
- v=spf1 include:_spf.tdecu_org._d.easydmarc.pro ~all
- 95885b811087432f9248e0934d89efd4
- adobe-idp-site-verification=70fb6016f38bc0e452d957e8eeb6f42c96e9dc37c34f0dcf3b5679fbcb1d4bf3
- atlassian-domain-verification=xjxviJ9vo9fGlFZnP5U1fLCx7P77bTEIK/KxmB/4bPfHXLfPsHAL2Pj4ptDDNfuP
- docusign=e94ea6fc-d662-4a5a-90ef-1b9fb618046c
- google-site-verification=h-nnW25vlIBbllRuacKJPMl0ePdeGv-cKw55mc4_yeI
- cisco-ci-domain-verification=6701ac632645c22b210ef83eb6d770b85ce1d49eba6fbaaa173ab15548d26f14
- d365mktkey=ZEpBeA1xcbBxUGNy7hamoE74zUe2Fji4BUN7rbMRgEIx
- apple-domain-verification=VZ5VLRkRsfseNRH2
Cloud / SaaS Services Detected
Adobe
Apple
Atlassian
Mailchimp
Cisco
DocuSign
Leak Screenshot:
