Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo TGIDIRECT.COM

Group: clop

Discovered by ransomware.live: 2023-07-12

Estimated attack date: 2023-07-12

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 6

Third Party Employee Credentials: 0

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • tgidirect-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 redirect=tgidirect.com.hosted.spf-report.com
  • google-site-verification=lVOoBrikGhth-NFCfVePWlDas-dgaJX63CL520YcPbQ
  • plnmbv544gaaucug3t69pg5bgn
  • detectify-verification=431e4421a6552ddae0f52dcd9b506e85
  • google-site-verification=8ngn_srgelbevxpu-28rxZyxYIQ8UD4-OVdk8eFpm0k
  • MS=ms42083192
  • MS=ms38059409
  • apple-domain-verification=qwMDhDcR5bHklktL
  • google-site-verification=xJnxaAAsfIubU6ma78advISgVZIPNa3VsjrxuE52ggE
Cloud / SaaS Services Detected
Apple Microsoft 365

Leak Screenshot:

Leak Screenshot