Toyota Brazil
Toyota Brazil
Group: hunters
Discovered by ransomware.live: 2024-04-13
Estimated attack date: 2024-04-13
Country:
Description:
Country : Brazil - Exfiltraded data : yes - Encrypted data : no
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 65
Compromised Users: 1075
Third Party Employee Credentials: 93
External Attack Surface: 105
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- toyota.in.tmes.trendmicro.com.
TXT Records
- tmes=5fcf3bd79410577ec01b12fdee16b465
- v=spf1 mx mx:mail2.toyota.com.br mx:mail3.toyota.com.br include:mailgun.org ip4:200.218.10.75 ip4:200.218.29.8 include:spf.protection.outlook.com include:_spf.salesforce.com include:spf.tmes.trendmicro.com -all
- yHUBQrQNdXajfe9rwQH/lqBtS7cJTabnVQVOCK0DyQ55vZH0WZfP45eJmOWU0WPMue3SW9ZEnf/ONWRXoKGz6w==
- 45O10VTSW2RWFQ03XO664OZ856P1TTJKRQ047KOX
- MS=ms43022357
- Nks9EaGlR71HyFZ8ee6nc1/WN6jj92i8oXI5RW08napF5c/XMd+AC0gdJ9BsQI+/VyyOmKoEf1ZVJHxAITZDMA==
- atlassian-domain-verification=F2yWwDOIAhlCiBB1FdLsHeBZ8WTGqqhBNTdchAErZ7MpgU2GdUXxzCHsF6ej5NxC
- facebook-domain-verification=ulx7mm67bh0pwgf8t257gmukmj89bq
- globalsign-domain-verification=ajEYA0DJZt5A8iQner44U1v8kXVHGSXH7FXIkofKTr
- google-gws-recovery-domain-verification=52065440
- google-site-verification=5xLigiIk_gBQkvFnTjLGMhzLt6RIpNRoUOJuWOyAIVA
Cloud / SaaS Services Detected
Atlassian
Microsoft 365
Salesforce
Mailgun
Leak Screenshot:
